Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2026-42499 (GCVE-0-2026-42499)
Vulnerability from cvelistv5 – Published: 2026-05-07 19:41 – Updated: 2026-07-10 12:05{
"containers": {
"adp": [
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2026-42499",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-05-08T16:55:28.873015Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-05-08T21:29:59.662Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"affected": [
{
"cpes": [
"cpe:/a:redhat:logging:6.4::el9"
],
"defaultStatus": "affected",
"product": "Logging Subsystem for Red Hat OpenShift 6.4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.10::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Security for Kubernetes 4.10",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.9::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Security for Kubernetes 4.9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhdh:1.10::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Developer Hub 1.10",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhdh:1.9::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Developer Hub 1.9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:3.1::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Service Mesh 3.1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:3.2::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Service Mesh 3.2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:3.3::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Service Mesh 3.3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:3.0::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Service Mesh 3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:trusted_artifact_signer:1.4::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Trusted Artifact Signer 1.4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:assisted_installer:2"
],
"defaultStatus": "affected",
"product": "Assisted Installer for Red Hat OpenShift Container Platform 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:cert_manager:1"
],
"defaultStatus": "affected",
"product": "cert-manager Operator for Red Hat OpenShift",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:confidential_compute_attestation:1"
],
"defaultStatus": "affected",
"product": "Confidential Compute Attestation",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:cryostat:4"
],
"defaultStatus": "affected",
"product": "Cryostat 4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_custom_metrics_autoscaler:2"
],
"defaultStatus": "affected",
"product": "Custom Metric Autoscaler operator for Red Hat Openshift",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:external_secrets_operator:1"
],
"defaultStatus": "affected",
"product": "External Secrets Operator for Red Hat OpenShift",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_file_integrity_operator:1"
],
"defaultStatus": "affected",
"product": "File Integrity Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:lvms:4"
],
"defaultStatus": "affected",
"product": "Logical Volume Manager Storage",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:migration_toolkit_applications:8"
],
"defaultStatus": "affected",
"product": "Migration Toolkit for Applications 8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhmt:1"
],
"defaultStatus": "affected",
"product": "Migration Toolkit for Containers",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multiarch_tuning_operator"
],
"defaultStatus": "affected",
"product": "Multiarch Tuning Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:network_observ_optr:1"
],
"defaultStatus": "affected",
"product": "Network Observability Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_api_data_protection:1"
],
"defaultStatus": "affected",
"product": "OpenShift API for Data Protection",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ocp_tools"
],
"defaultStatus": "affected",
"product": "OpenShift Developer Tools and Services",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_lightspeed"
],
"defaultStatus": "affected",
"product": "OpenShift Lightspeed",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_pipelines:1"
],
"defaultStatus": "affected",
"product": "OpenShift Pipelines",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:serverless:1"
],
"defaultStatus": "affected",
"product": "OpenShift Serverless",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:2"
],
"defaultStatus": "affected",
"product": "OpenShift Service Mesh 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:3"
],
"defaultStatus": "affected",
"product": "OpenShift Service Mesh 3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_power_monitoring"
],
"defaultStatus": "affected",
"product": "Power monitoring for Red Hat OpenShift",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ceph_storage:5"
],
"defaultStatus": "affected",
"product": "Red Hat Ceph Storage 5",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ceph_storage:6"
],
"defaultStatus": "affected",
"product": "Red Hat Ceph Storage 6",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ceph_storage:9"
],
"defaultStatus": "affected",
"product": "Red Hat Ceph Storage 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:certifications:9"
],
"defaultStatus": "affected",
"product": "Red Hat Certification Program for Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:10"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:enterprise_linux_ai:3"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AI (RHEL AI) 3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:hummingbird:1"
],
"defaultStatus": "affected",
"product": "Red Hat Hardened Images",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_ai"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift AI (RHOAI)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_cluster_manager_cli:1"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Cluster Manager CLI",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_data_foundation:4"
],
"defaultStatus": "affected",
"product": "Red Hat Openshift Data Foundation 4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_devspaces:3"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Dev Spaces",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:devworkspace"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Dev Workspaces Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_distributed_tracing:3"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift distributed tracing 3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:windows_machine_config"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift for Windows Containers",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_gitops:1"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift GitOps",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:container_native_virtualization:4"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Virtualization 4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openstack:18.0"
],
"defaultStatus": "affected",
"product": "Red Hat OpenStack Platform 18.0",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3"
],
"defaultStatus": "affected",
"product": "Red Hat Quay 3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_interconnect:1"
],
"defaultStatus": "affected",
"product": "Red Hat Service Interconnect 1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_interconnect:2"
],
"defaultStatus": "affected",
"product": "Red Hat Service Interconnect 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:trusted_artifact_signer:1"
],
"defaultStatus": "affected",
"product": "Red Hat Trusted Artifact Signer",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_security_profiles_operator:1"
],
"defaultStatus": "affected",
"product": "Security Profiles Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:zero_trust_workload_identity_manager:1"
],
"defaultStatus": "affected",
"product": "Zero Trust Workload Identity Manager",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:zero_trust_workload_identity_manager:0"
],
"defaultStatus": "affected",
"product": "Zero Trust Workload Identity Manager - Tech Preview",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openstack:16.2"
],
"defaultStatus": "unaffected",
"product": "Red Hat OpenStack Platform 16.2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openstack:17.1"
],
"defaultStatus": "unaffected",
"product": "Red Hat OpenStack Platform 17.1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:gatekeeper:3"
],
"defaultStatus": "unknown",
"product": "Gatekeeper 3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_engine"
],
"defaultStatus": "unknown",
"product": "Multicluster Engine for Kubernetes",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_globalhub"
],
"defaultStatus": "unknown",
"product": "Multicluster Global Hub",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:acm:2"
],
"defaultStatus": "unknown",
"product": "Red Hat Advanced Cluster Management for Kubernetes 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ansible_automation_platform:2"
],
"defaultStatus": "unknown",
"product": "Red Hat Ansible Automation Platform 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:edge_manager:1"
],
"defaultStatus": "unknown",
"product": "Red Hat Edge Manager 1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:lightspeed_for_runtimes:1"
],
"defaultStatus": "unknown",
"product": "Red Hat Lightspeed for Runtimes Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:satellite:6"
],
"defaultStatus": "unknown",
"product": "Red Hat Satellite 6",
"vendor": "Red Hat"
}
],
"datePublic": "2026-05-07T19:41:18.615Z",
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in the `net/mail` package within the Go standard library. A remote attacker could provide specially crafted, pathological email addresses. When these malformed email addresses are parsed by the `consumePhrase` function, it can lead to excessive resource consumption due to quadratic string concatenation, resulting in a Denial of Service (DoS) condition."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Important"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-1046",
"description": "Creation of Immutable Text Using String Concatenation",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-10T12:05:34.995Z",
"orgId": "0b0ca135-0b70-47e7-9f44-1890c2a1c46c",
"shortName": "redhat-SADP"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-42499"
},
{
"name": "RHBZ#2467809",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467809"
},
{
"tags": [
"x_sadp-csaf-vex"
],
"url": "https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-42499.json"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:34364"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36625"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:33574"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:33123"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:33142"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:33150"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:33120"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36797"
}
],
"solutions": [
{
"lang": "en",
"value": "RHSA-2026:34364: Logging Subsystem for Red Hat OpenShift 6.4"
},
{
"lang": "en",
"value": "RHSA-2026:36625: Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"lang": "en",
"value": "RHSA-2026:36319: Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"lang": "en",
"value": "RHSA-2026:36754: Red Hat Developer Hub 1.10"
},
{
"lang": "en",
"value": "RHSA-2026:33574: Red Hat Developer Hub 1.9"
},
{
"lang": "en",
"value": "RHSA-2026:33123: Red Hat OpenShift Service Mesh 3.1"
},
{
"lang": "en",
"value": "RHSA-2026:33142: Red Hat OpenShift Service Mesh 3.2"
},
{
"lang": "en",
"value": "RHSA-2026:33150: Red Hat OpenShift Service Mesh 3.3"
},
{
"lang": "en",
"value": "RHSA-2026:33120: Red Hat OpenShift Service Mesh 3"
},
{
"lang": "en",
"value": "RHSA-2026:36797: Red Hat Trusted Artifact Signer 1.4"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-05-07T20:00:51.685Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-05-07T19:41:18.615Z",
"value": "Made public."
}
],
"title": "net/mail: golang: net/mail: Denial of Service via pathological email address parsing",
"workarounds": [
{
"lang": "en",
"value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability."
}
],
"x_adpType": "supplier",
"x_generator": {
"engine": "sadp-cli 1.0.0"
}
}
],
"cna": {
"affected": [
{
"collectionURL": "https://pkg.go.dev",
"defaultStatus": "unaffected",
"packageName": "net/mail",
"product": "net/mail",
"programRoutines": [
{
"name": "addrParser.consumePhrase"
},
{
"name": "AddressParser.Parse"
},
{
"name": "AddressParser.ParseList"
},
{
"name": "Header.AddressList"
},
{
"name": "ParseAddress"
},
{
"name": "ParseAddressList"
}
],
"vendor": "Go standard library",
"versions": [
{
"lessThan": "1.25.10",
"status": "affected",
"version": "0",
"versionType": "semver"
},
{
"lessThan": "1.26.3",
"status": "affected",
"version": "1.26.0-0",
"versionType": "semver"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Pathological inputs could cause DoS through consumePhrase when parsing an email address according to RFC 5322."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "CWE-407: Inefficient Algorithmic Complexity",
"lang": "en"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-05-07T19:41:18.615Z",
"orgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
"shortName": "Go"
},
"references": [
{
"url": "https://go.dev/issue/78987"
},
{
"url": "https://go.dev/cl/771520"
},
{
"url": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M"
},
{
"url": "https://pkg.go.dev/vuln/GO-2026-4977"
}
],
"title": "Quadratic string concatenation in consumePhrase in net/mail"
}
},
"cveMetadata": {
"assignerOrgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
"assignerShortName": "Go",
"cveId": "CVE-2026-42499",
"datePublished": "2026-05-07T19:41:18.615Z",
"dateReserved": "2026-04-28T00:21:12.791Z",
"dateUpdated": "2026-07-10T12:05:34.995Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2026-42499",
"date": "2026-07-12",
"epss": "0.00798",
"percentile": "0.52214"
},
"microsoft_vex": {
"current_release_date": "2026-06-09T01:42:47.000Z",
"cve": "CVE-2026-42499",
"id": "msrc_CVE-2026-42499",
"initial_release_date": "2026-05-02T00:00:00.000Z",
"product_status:known_affected": "2",
"product_status:known_not_affected": "5",
"source": "Microsoft CSAF VEX",
"status": "final",
"title": "Quadratic string concatenation in consumePhrase in net/mail",
"url": "https://msrc.microsoft.com/csaf/vex/2026/msrc_cve-2026-42499.json",
"version": "6"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2026-42499\",\"sourceIdentifier\":\"security@golang.org\",\"published\":\"2026-05-07T20:16:44.540\",\"lastModified\":\"2026-07-10T12:16:52.940\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Pathological inputs could cause DoS through consumePhrase when parsing an email address according to RFC 5322.\"}],\"affected\":[{\"source\":\"security@golang.org\",\"affectedData\":[{\"vendor\":\"Go standard library\",\"product\":\"net/mail\",\"defaultStatus\":\"unaffected\",\"collectionURL\":\"https://pkg.go.dev\",\"packageName\":\"net/mail\",\"programRoutines\":[{\"name\":\"addrParser.consumePhrase\"},{\"name\":\"AddressParser.Parse\"},{\"name\":\"AddressParser.ParseList\"},{\"name\":\"Header.AddressList\"},{\"name\":\"ParseAddress\"},{\"name\":\"ParseAddressList\"}],\"versions\":[{\"version\":\"0\",\"lessThan\":\"1.25.10\",\"versionType\":\"semver\",\"status\":\"affected\"},{\"version\":\"1.26.0-0\",\"lessThan\":\"1.26.3\",\"versionType\":\"semver\",\"status\":\"affected\"}]}]},{\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\",\"affectedData\":[{\"vendor\":\"Red Hat\",\"product\":\"Logging Subsystem for Red Hat OpenShift 6.4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:logging:6.4::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Security for Kubernetes 4.10\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:advanced_cluster_security:4.10::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Security for Kubernetes 4.9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:advanced_cluster_security:4.9::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Developer Hub 1.10\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhdh:1.10::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Developer Hub 1.9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhdh:1.9::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Service Mesh 3.1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:3.1::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Service Mesh 3.2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:3.2::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Service Mesh 3.3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:3.3::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Service Mesh 3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:3.0::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Trusted Artifact Signer 1.4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:trusted_artifact_signer:1.4::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Assisted Installer for Red Hat OpenShift Container Platform 2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:assisted_installer:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"cert-manager Operator for Red Hat OpenShift\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:cert_manager:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Confidential Compute Attestation\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:confidential_compute_attestation:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Cryostat 4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:cryostat:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Custom Metric Autoscaler operator for Red Hat Openshift\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_custom_metrics_autoscaler:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"External Secrets Operator for Red Hat OpenShift\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:external_secrets_operator:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"File Integrity Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_file_integrity_operator:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Logical Volume Manager Storage\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:lvms:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Migration Toolkit for Applications 8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:migration_toolkit_applications:8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Migration Toolkit for Containers\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhmt:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Multiarch Tuning Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multiarch_tuning_operator\"]},{\"vendor\":\"Red Hat\",\"product\":\"Network Observability Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:network_observ_optr:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift API for Data Protection\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_api_data_protection:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Developer Tools and Services\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ocp_tools\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Lightspeed\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_lightspeed\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Pipelines\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_pipelines:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Serverless\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:serverless:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Service Mesh 2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Service Mesh 3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Power monitoring for Red Hat OpenShift\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_power_monitoring\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ceph Storage 5\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ceph_storage:5\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ceph Storage 6\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ceph_storage:6\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ceph Storage 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ceph_storage:9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Certification Program for Red Hat Enterprise Linux 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:certifications:9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux 10\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:10\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux 8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AI (RHEL AI) 3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:enterprise_linux_ai:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Hardened Images\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:hummingbird:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift AI (RHOAI)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_ai\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Cluster Manager CLI\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_cluster_manager_cli:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Openshift Data Foundation 4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_data_foundation:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Dev Spaces\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_devspaces:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Dev Workspaces Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:devworkspace\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift distributed tracing 3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_distributed_tracing:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift for Windows Containers\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:windows_machine_config\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift GitOps\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_gitops:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Virtualization 4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:container_native_virtualization:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenStack Platform 18.0\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openstack:18.0\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:quay:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Service Interconnect 1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_interconnect:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Service Interconnect 2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_interconnect:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Trusted Artifact Signer\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:trusted_artifact_signer:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Security Profiles Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_security_profiles_operator:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Zero Trust Workload Identity Manager\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:zero_trust_workload_identity_manager:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Zero Trust Workload Identity Manager - Tech Preview\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:zero_trust_workload_identity_manager:0\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenStack Platform 16.2\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:openstack:16.2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenStack Platform 17.1\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:openstack:17.1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Gatekeeper 3\",\"defaultStatus\":\"unknown\",\"cpes\":[\"cpe:/a:redhat:gatekeeper:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Multicluster Engine for Kubernetes\",\"defaultStatus\":\"unknown\",\"cpes\":[\"cpe:/a:redhat:multicluster_engine\"]},{\"vendor\":\"Red Hat\",\"product\":\"Multicluster Global Hub\",\"defaultStatus\":\"unknown\",\"cpes\":[\"cpe:/a:redhat:multicluster_globalhub\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Management for Kubernetes 2\",\"defaultStatus\":\"unknown\",\"cpes\":[\"cpe:/a:redhat:acm:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ansible Automation Platform 2\",\"defaultStatus\":\"unknown\",\"cpes\":[\"cpe:/a:redhat:ansible_automation_platform:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Edge Manager 1\",\"defaultStatus\":\"unknown\",\"cpes\":[\"cpe:/a:redhat:edge_manager:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Lightspeed for Runtimes Operator\",\"defaultStatus\":\"unknown\",\"cpes\":[\"cpe:/a:redhat:lightspeed_for_runtimes:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Satellite 6\",\"defaultStatus\":\"unknown\",\"cpes\":[\"cpe:/a:redhat:satellite:6\"]}]}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6},{\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"ssvcV203\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"ssvcData\":{\"timestamp\":\"2026-05-08T16:55:28.873015Z\",\"id\":\"CVE-2026-42499\",\"options\":[{\"exploitation\":\"none\"},{\"automatable\":\"yes\"},{\"technicalImpact\":\"partial\"}],\"role\":\"CISA Coordinator\",\"version\":\"2.0.3\"}}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]},{\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-1046\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.25.10\",\"matchCriteriaId\":\"1C966EF3-C51C-4239-B5FC-C44A5202FEC8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.26.0\",\"versionEndExcluding\":\"1.26.3\",\"matchCriteriaId\":\"522E4CD0-2B99-4363-9C78-0BAFD988A2D6\"}]}]}],\"references\":[{\"url\":\"https://go.dev/cl/771520\",\"source\":\"security@golang.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://go.dev/issue/78987\",\"source\":\"security@golang.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://groups.google.com/g/golang-announce/c/qcCIEXso47M\",\"source\":\"security@golang.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://pkg.go.dev/vuln/GO-2026-4977\",\"source\":\"security@golang.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:33120\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:33123\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:33142\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:33150\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:33574\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:34364\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:36319\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:36625\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:36754\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:36797\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/security/cve/CVE-2026-42499\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2467809\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-42499.json\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"}]}}",
"redhat_vex": {
"aggregate_severity": "Important",
"current_release_date": "2026-07-09T21:03:50+00:00",
"cve": "CVE-2026-42499",
"id": "CVE-2026-42499",
"initial_release_date": "2026-05-07T19:41:18.615000+00:00",
"product_status:fixed": "85",
"product_status:known_affected": "165",
"product_status:known_not_affected": "224",
"product_status:under_investigation": "100",
"source": "Red Hat CSAF VEX",
"status": "final",
"title": "net/mail: golang: net/mail: Denial of Service via pathological email address parsing",
"url": "https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-42499.json",
"version": "3"
},
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"net/mail: golang: net/mail: Denial of Service via pathological email address parsing\", \"metrics\": [{\"other\": {\"type\": \"Red Hat severity rating\", \"content\": {\"value\": \"Important\", \"namespace\": \"https://access.redhat.com/security/updates/classification/\"}}}, {\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}], \"affected\": [{\"cpes\": [\"cpe:/a:redhat:logging:6.4::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Logging Subsystem for Red Hat OpenShift 6.4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.10::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security for Kubernetes 4.10\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.9::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security for Kubernetes 4.9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhdh:1.10::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Developer Hub 1.10\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhdh:1.9::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Developer Hub 1.9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:3.0::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Service Mesh 3.0\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:3.1::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Service Mesh 3.1\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:3.2::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Service Mesh 3.2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:3.3::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Service Mesh 3.3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:trusted_artifact_signer:1.4::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Trusted Artifact Signer 1.4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:assisted_installer:2\"], \"vendor\": \"Red Hat\", \"product\": \"Assisted Installer for Red Hat OpenShift Container Platform 2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:cert_manager:1\"], \"vendor\": \"Red Hat\", \"product\": \"cert-manager Operator for Red Hat OpenShift\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:confidential_compute_attestation:1\"], \"vendor\": \"Red Hat\", \"product\": \"Confidential Compute Attestation\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:cryostat:4\"], \"vendor\": \"Red Hat\", \"product\": \"Cryostat 4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_custom_metrics_autoscaler:2\"], \"vendor\": \"Red Hat\", \"product\": \"Custom Metric Autoscaler operator for Red Hat Openshift\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:external_secrets_operator:1\"], \"vendor\": \"Red Hat\", \"product\": \"External Secrets Operator for Red Hat OpenShift\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_file_integrity_operator:1\"], \"vendor\": \"Red Hat\", \"product\": \"File Integrity Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:lvms:4\"], \"vendor\": \"Red Hat\", \"product\": \"Logical Volume Manager Storage\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:migration_toolkit_applications:8\"], \"vendor\": \"Red Hat\", \"product\": \"Migration Toolkit for Applications 8\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhmt:1\"], \"vendor\": \"Red Hat\", \"product\": \"Migration Toolkit for Containers\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:multiarch_tuning_operator\"], \"vendor\": \"Red Hat\", \"product\": \"Multiarch Tuning Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:network_observ_optr:1\"], \"vendor\": \"Red Hat\", \"product\": \"Network Observability Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_api_data_protection:1\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift API for Data Protection\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ocp_tools\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Developer Tools and Services\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_lightspeed\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Lightspeed\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_pipelines:1\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Pipelines\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:serverless:1\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Serverless\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:2\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Service Mesh 2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:3\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Service Mesh 3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_power_monitoring\"], \"vendor\": \"Red Hat\", \"product\": \"Power monitoring for Red Hat OpenShift\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ceph_storage:5\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ceph Storage 5\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ceph_storage:6\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ceph Storage 6\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ceph_storage:9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ceph Storage 9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:certifications:9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Certification Program for Red Hat Enterprise Linux 9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:10\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 10\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux_ai:3\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AI (RHEL AI) 3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:hummingbird:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Hardened Images\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_ai\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift AI (RHOAI)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_cluster_manager_cli:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Cluster Manager CLI\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_data_foundation:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Openshift Data Foundation 4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_devspaces:3\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Dev Spaces\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:devworkspace\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Dev Workspaces Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_distributed_tracing:3\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift distributed tracing 3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:windows_machine_config\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift for Windows Containers\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_gitops:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift GitOps\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:container_native_virtualization:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Virtualization 4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openstack:18.0\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenStack Platform 18.0\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:quay:3\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Quay 3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_interconnect:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Service Interconnect 1\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_interconnect:2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Service Interconnect 2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:trusted_artifact_signer:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Trusted Artifact Signer\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_security_profiles_operator:1\"], \"vendor\": \"Red Hat\", \"product\": \"Security Profiles Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:zero_trust_workload_identity_manager:1\"], \"vendor\": \"Red Hat\", \"product\": \"Zero Trust Workload Identity Manager\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:zero_trust_workload_identity_manager:0\"], \"vendor\": \"Red Hat\", \"product\": \"Zero Trust Workload Identity Manager - Tech Preview\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openstack:16.2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenStack Platform 16.2\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:openstack:17.1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenStack Platform 17.1\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:gatekeeper:3\"], \"vendor\": \"Red Hat\", \"product\": \"Gatekeeper 3\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_engine\"], \"vendor\": \"Red Hat\", \"product\": \"Multicluster Engine for Kubernetes\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_globalhub\"], \"vendor\": \"Red Hat\", \"product\": \"Multicluster Global Hub\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/a:redhat:acm:2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Management for Kubernetes 2\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/a:redhat:ansible_automation_platform:2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ansible Automation Platform 2\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/a:redhat:edge_manager:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Edge Manager 1\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/a:redhat:lightspeed_for_runtimes:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Lightspeed for Runtimes Operator\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/a:redhat:satellite:6\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Satellite 6\", \"defaultStatus\": \"unknown\"}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2026-05-07T20:00:51.685Z\", \"value\": \"Reported to Red Hat.\"}, {\"lang\": \"en\", \"time\": \"2026-05-07T19:41:18.615Z\", \"value\": \"Made public.\"}], \"solutions\": [{\"lang\": \"en\", \"value\": \"RHSA-2026:34364: Logging Subsystem for Red Hat OpenShift 6.4\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:36625: Red Hat Advanced Cluster Security for Kubernetes 4.10\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:36319: Red Hat Advanced Cluster Security for Kubernetes 4.9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:36754: Red Hat Developer Hub 1.10\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:33574: Red Hat Developer Hub 1.9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:33120: Red Hat OpenShift Service Mesh 3.0\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:33123: Red Hat OpenShift Service Mesh 3.1\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:33142: Red Hat OpenShift Service Mesh 3.2\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:33150: Red Hat OpenShift Service Mesh 3.3\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:36797: Red Hat Trusted Artifact Signer 1.4\"}], \"x_adpType\": \"supplier\", \"datePublic\": \"2026-05-07T19:41:18.615Z\", \"references\": [{\"url\": \"https://access.redhat.com/security/cve/CVE-2026-42499\", \"tags\": [\"vdb-entry\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2467809\", \"name\": \"RHBZ#2467809\", \"tags\": [\"issue-tracking\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-42499.json\", \"tags\": [\"x_sadp-csaf-vex\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:34364\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:36625\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:36319\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:36754\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:33574\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:33120\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:33123\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:33142\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:33150\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:36797\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}], \"workarounds\": [{\"lang\": \"en\", \"value\": \"Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.\"}], \"x_generator\": {\"engine\": \"sadp-cli 1.0.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"A flaw was found in the `net/mail` package within the Go standard library. A remote attacker could provide specially crafted, pathological email addresses. When these malformed email addresses are parsed by the `consumePhrase` function, it can lead to excessive resource consumption due to quadratic string concatenation, resulting in a Denial of Service (DoS) condition.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-1046\", \"description\": \"Creation of Immutable Text Using String Concatenation\"}]}], \"providerMetadata\": {\"orgId\": \"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\", \"shortName\": \"redhat-SADP\", \"dateUpdated\": \"2026-07-09T12:09:44.025Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2026-42499\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-05-08T16:55:28.873015Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-05-08T16:55:43.428Z\"}}], \"cna\": {\"title\": \"Quadratic string concatenation in consumePhrase in net/mail\", \"affected\": [{\"vendor\": \"Go standard library\", \"product\": \"net/mail\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"1.25.10\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"1.26.0-0\", \"lessThan\": \"1.26.3\", \"versionType\": \"semver\"}], \"packageName\": \"net/mail\", \"collectionURL\": \"https://pkg.go.dev\", \"defaultStatus\": \"unaffected\", \"programRoutines\": [{\"name\": \"addrParser.consumePhrase\"}, {\"name\": \"AddressParser.Parse\"}, {\"name\": \"AddressParser.ParseList\"}, {\"name\": \"Header.AddressList\"}, {\"name\": \"ParseAddress\"}, {\"name\": \"ParseAddressList\"}]}], \"references\": [{\"url\": \"https://go.dev/issue/78987\"}, {\"url\": \"https://go.dev/cl/771520\"}, {\"url\": \"https://groups.google.com/g/golang-announce/c/qcCIEXso47M\"}, {\"url\": \"https://pkg.go.dev/vuln/GO-2026-4977\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Pathological inputs could cause DoS through consumePhrase when parsing an email address according to RFC 5322.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"description\": \"CWE-407: Inefficient Algorithmic Complexity\"}]}], \"providerMetadata\": {\"orgId\": \"1bb62c36-49e3-4200-9d77-64a1400537cc\", \"shortName\": \"Go\", \"dateUpdated\": \"2026-05-07T19:41:18.615Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2026-42499\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-07-09T12:09:44.025Z\", \"dateReserved\": \"2026-04-28T00:21:12.791Z\", \"assignerOrgId\": \"1bb62c36-49e3-4200-9d77-64a1400537cc\", \"datePublished\": \"2026-05-07T19:41:18.615Z\", \"assignerShortName\": \"Go\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
RHSA-2026:36319
Vulnerability from csaf_redhat - Published: 2026-07-07 15:06 - Updated: 2026-07-10 22:47A flaw was found in Red Hat Advanced Cluster Security for Kubernetes (RHACS). Central does not limit the depth of GraphQL queries served on the authenticated GraphQL API. An authenticated user with a valid API token can send deeply nested queries that cause excessive resource consumption in Central, resulting in a denial of service for the management plane.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x | — |
Workaround
|
A flaw was found in form-data, a library for creating readable multipart/form-data streams. A remote attacker can exploit this vulnerability by injecting carriage return (CR), line feed (LF), or double-quote (") characters into the `field` argument of `FormData#append` or the `filename` option. This allows the attacker to inject additional headers or smuggle entire additional multipart parts into requests, potentially enabling them to add or override form fields and compromise data integrity.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x | — |
Workaround
|
The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x | — |
Workaround
|
A flaw was found in golang.org/x/net/html. A remote attacker could exploit this vulnerability by providing specially crafted HTML. When this arbitrary HTML is parsed and rendered, it can result in an unexpected HTML tree, bypassing input sanitization. This can be leveraged to execute Cross-Site Scripting (XSS) attacks, potentially leading to arbitrary code execution in applications that use the affected component.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x | — |
Workaround
|
A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x | — |
A flaw was found in Go's `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x | — |
Workaround
|
A flaw was found in the `net` package of Go (golang), specifically when using the `LookupCNAME` function with the `cgo` DNS resolver. A remote attacker could exploit this by providing a very long Canonical Name (CNAME) response. This can trigger a double-free of C memory, leading to a crash and a Denial of Service (DoS) for the affected application.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x | — |
Workaround
|
A flaw was found in the `net/mail` package of the Go programming language. An attacker could provide specially crafted inputs to the `ParseAddress`, `ParseAddressList`, or `ParseDate` functions. This could lead to excessive consumption of CPU and memory resources, resulting in a Denial of Service (DoS) for applications processing these inputs.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. A remote attacker could exploit this vulnerability when an SSH server authentication callback returned a PartialSuccessError with non-nil permissions. This flaw caused these permissions to be silently discarded, potentially bypassing certificate restrictions, such as a force-command, after a second authentication factor succeeded. This could lead to unauthorized command execution or access.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. The RSA and DSA public key parsers in the affected component did not enforce size limits on key parameters. This vulnerability allows an unauthenticated client to provide a crafted public key with an excessively large modulus or DSA parameter during public key authentication. Successful exploitation could lead to a denial of service (DoS) due to prolonged CPU consumption during signature verification.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. A remote malicious SSH peer can exploit this by sending unsolicited global request responses, which fills an internal buffer and blocks the connection's read loop. This prevents the associated resources from being released, leading to a resource leak per connection. The consequence is a Denial of Service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. The Verify() method, responsible for FIDO/U2F security key types, did not properly check for user presence. This allowed signatures to be accepted without requiring a physical touch on the hardware security key. As a result, an attacker could potentially use a hardware security key in an unattended manner, bypassing a critical security control designed to ensure user intent.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x | — |
A flaw was found in golang.org/x/crypto/ssh/agent. When a key was added to a remote agent, security restrictions, known as constraint extensions, were not properly processed during the request. This allowed these restrictions to be silently removed when keys were forwarded, leading to the unrestricted use of the key on the remote host. This vulnerability could enable an attacker to bypass intended security controls and perform unauthorized actions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. SSH servers configured to use CertChecker as a public key callback, without explicitly setting IsUserAuthority or IsHostAuthority, are vulnerable. A remote attacker can exploit this by presenting a specially crafted certificate, causing the server to panic and resulting in a Denial of Service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x | — |
Workaround
|
A flaw was found in the `net/mail` package within the Go standard library. A remote attacker could provide specially crafted, pathological email addresses. When these malformed email addresses are parsed by the `consumePhrase` function, it can lead to excessive resource consumption due to quadratic string concatenation, resulting in a Denial of Service (DoS) condition.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. A remote attacker could send specially crafted inputs to the AES-GCM packet decoder. This could lead to an incorrectly placed cast from bytes to an integer, causing a server-side panic and resulting in a Denial of Service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x | — |
Workaround
|
A flaw was found in containerd, an open-source container runtime. The Container Runtime Interface (CRI) plugin, which manages container operations, fails to validate labels propagated from an image configuration to a container. This oversight could enable an attacker to execute arbitrary commands on the host system through a plugin that processes these unvalidated labels. The primary impact is host-root command execution, allowing unauthorized control over the underlying system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images are now available for Red Hat Advanced Cluster Security\n(RHACS), which typically include new features, bug fixes, and/or\nsecurity patches.",
"title": "Topic"
},
{
"category": "general",
"text": "See the release notes (link in the references section) for a\ndescription of the fixes and enhancements in this particular release.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:36319",
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-12143",
"url": "https://access.redhat.com/security/cve/CVE-2026-12143"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25679",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25681",
"url": "https://access.redhat.com/security/cve/CVE-2026-25681"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32280",
"url": "https://access.redhat.com/security/cve/CVE-2026-32280"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32281",
"url": "https://access.redhat.com/security/cve/CVE-2026-32281"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33811",
"url": "https://access.redhat.com/security/cve/CVE-2026-33811"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39820",
"url": "https://access.redhat.com/security/cve/CVE-2026-39820"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39828",
"url": "https://access.redhat.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39829",
"url": "https://access.redhat.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39830",
"url": "https://access.redhat.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39831",
"url": "https://access.redhat.com/security/cve/CVE-2026-39831"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39832",
"url": "https://access.redhat.com/security/cve/CVE-2026-39832"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39835",
"url": "https://access.redhat.com/security/cve/CVE-2026-39835"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42499",
"url": "https://access.redhat.com/security/cve/CVE-2026-42499"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-46597",
"url": "https://access.redhat.com/security/cve/CVE-2026-46597"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-53488",
"url": "https://access.redhat.com/security/cve/CVE-2026-53488"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-9165",
"url": "https://access.redhat.com/security/cve/CVE-2026-9165"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.9/html-single/release_notes/index#about-this-release-499_release-notes-49",
"url": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.9/html-single/release_notes/index#about-this-release-499_release-notes-49"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_36319.json"
}
],
"title": "Red Hat Security Advisory: RHACS 4.9.9 security and bug fix update",
"tracking": {
"current_release_date": "2026-07-10T22:47:17+00:00",
"generator": {
"date": "2026-07-10T22:47:17+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.2"
}
},
"id": "RHSA-2026:36319",
"initial_release_date": "2026-07-07T15:06:01+00:00",
"revision_history": [
{
"date": "2026-07-07T15:06:01+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-07-07T15:06:09+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-10T22:47:17+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product": {
"name": "Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:advanced_cluster_security:4.9::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Advanced Cluster Security for Kubernetes"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256%3A42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256%3Ace31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=1782290046"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256%3Ac11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256%3A96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256%3A8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256%3Ad58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256%3Ad055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=1782891812"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256%3A9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=1782891812"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256%3Ac8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=1782891812"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256%3A0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=1782891812"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256%3Aaa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256%3A6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=1783357116"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256%3Ad68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256%3A7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=1782290046"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256%3A48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256%3Aa2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256%3Aa0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256%3Ab48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=1782891812"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256%3A9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=1782891812"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256%3A597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=1782891812"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256%3A6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=1782891812"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256%3A865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256%3A47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=1783357116"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256%3A6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256%3A13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=1782290046"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256%3Aa757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256%3A934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256%3A4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256%3A79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=1782891812"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256%3A3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=1782891812"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256%3A6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=1782891812"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256%3A3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=1782891812"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256%3A0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256%3A48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=1783357116"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256%3Afbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256%3Aef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=1782290046"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256%3Aac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256%3A2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256%3Aedd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256%3A08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=1782891812"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256%3Aac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=1782891812"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256%3A8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=1782891812"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256%3A4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=1782891812"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256%3Abff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=1783357116"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256%3A8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=1783357116"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Moritz Clasmeier"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2026-9165",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2026-05-21T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480505"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Red Hat Advanced Cluster Security for Kubernetes (RHACS). Central does not limit the depth of GraphQL queries served on the authenticated GraphQL API. An authenticated user with a valid API token can send deeply nested queries that cause excessive resource consumption in Central, resulting in a denial of service for the management plane.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "stackrox: stackrox: Unbounded GraphQL query depth allows authenticated denial of service",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security is aware of this issue affecting RHACS Central. This flaw allows an authenticated user to reduce availability of the Central management component. Red Hat is not aware of malicious exploitation of this issue outside of coordinated testing. Updates addressing this issue will be released according to the RHACS support lifecycle. Refer to the associated errata when available for affected versions and update instructions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-9165"
},
{
"category": "external",
"summary": "RHBZ#2480505",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480505"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-9165",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-9165"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-9165",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-9165"
}
],
"release_date": "2026-07-06T08:38:30.568000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T15:06:01+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
},
{
"category": "workaround",
"details": "There is no complete mitigation other than installing the update once\navailable.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "stackrox: stackrox: Unbounded GraphQL query depth allows authenticated denial of service"
},
{
"cve": "CVE-2026-12143",
"cwe": {
"id": "CWE-93",
"name": "Improper Neutralization of CRLF Sequences (\u0027CRLF Injection\u0027)"
},
"discovery_date": "2026-06-12T19:00:57.360953+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2488480"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in form-data, a library for creating readable multipart/form-data streams. A remote attacker can exploit this vulnerability by injecting carriage return (CR), line feed (LF), or double-quote (\") characters into the `field` argument of `FormData#append` or the `filename` option. This allows the attacker to inject additional headers or smuggle entire additional multipart parts into requests, potentially enabling them to add or override form fields and compromise data integrity.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "form-data: form-data: Form field override via CRLF injection",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important impact flaw in the form-data library: a remote attacker can inject arbitrary headers or additional multipart parts via CRLF injection in field names or filenames, potentially overriding sensitive form fields and affecting data integrity.\n\nFor RHOAI and RHEL AI, severity is Moderate because affected versions appear only as a transitive npm dependency in RHOAI (dashboard, mod-arch plugins, MLflow UI) and RHEL AI 3.4 bootc images, and those products use fixed field names for uploads rather than passing untrusted user input as multipart field names or filenames. The documented exploit path is therefore not reachable in default deployments. Practical impact is limited to non-default or custom integrations that forward multipart requests using attacker-controlled field names.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-12143"
},
{
"category": "external",
"summary": "RHBZ#2488480",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2488480"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-12143",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-12143"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-12143",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-12143"
},
{
"category": "external",
"summary": "https://cwe.mitre.org/data/definitions/93.html",
"url": "https://cwe.mitre.org/data/definitions/93.html"
},
{
"category": "external",
"summary": "https://github.com/form-data/form-data/commit/64190db548c0179e37206858e39f27cf513e9435",
"url": "https://github.com/form-data/form-data/commit/64190db548c0179e37206858e39f27cf513e9435"
},
{
"category": "external",
"summary": "https://github.com/form-data/form-data/commit/be3f3cf553978bac15a5182f1f3c3d2d38ccf229",
"url": "https://github.com/form-data/form-data/commit/be3f3cf553978bac15a5182f1f3c3d2d38ccf229"
},
{
"category": "external",
"summary": "https://github.com/form-data/form-data/commit/c7133499c2ee1b80c678e411244f4442bf902045",
"url": "https://github.com/form-data/form-data/commit/c7133499c2ee1b80c678e411244f4442bf902045"
},
{
"category": "external",
"summary": "https://github.com/form-data/form-data/security/advisories/GHSA-hmw2-7cc7-3qxx",
"url": "https://github.com/form-data/form-data/security/advisories/GHSA-hmw2-7cc7-3qxx"
},
{
"category": "external",
"summary": "https://html.spec.whatwg.org/multipage/form-control-infrastructure.html#multipart-form-data",
"url": "https://html.spec.whatwg.org/multipage/form-control-infrastructure.html#multipart-form-data"
},
{
"category": "external",
"summary": "https://www.npmjs.com/package/form-data",
"url": "https://www.npmjs.com/package/form-data"
}
],
"release_date": "2026-06-12T18:01:30.362000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T15:06:01+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
},
{
"category": "workaround",
"details": "Applications using the `form-data` library should implement strict input validation and sanitization for all field names and filenames derived from untrusted sources. This prevents the injection of control characters (CR, LF, \") that could lead to header injection or form field overrides. Deployments that exclusively use fixed or trusted field names are not impacted.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "form-data: form-data: Form field override via CRLF injection"
},
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T15:06:01+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
},
{
"cve": "CVE-2026-25681",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2026-05-22T16:01:08.177603+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480761"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/html. A remote attacker could exploit this vulnerability by providing specially crafted HTML. When this arbitrary HTML is parsed and rendered, it can result in an unexpected HTML tree, bypassing input sanitization. This can be leveraged to execute Cross-Site Scripting (XSS) attacks, potentially leading to arbitrary code execution in applications that use the affected component.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/html: golang.org/x/net/html: Arbitrary code execution via Cross-Site Scripting",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important vulnerability in `golang.org/x/net/html` could enable remote attackers to execute Cross-Site Scripting (XSS) attacks, potentially leading to arbitrary code execution. The flaw allows specially crafted HTML to bypass input sanitization during parsing and rendering. Red Hat products are affected if they process untrusted HTML content using the vulnerable component without additional output encoding or robust content security policies.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25681"
},
{
"category": "external",
"summary": "RHBZ#2480761",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480761"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25681",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25681"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25681",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25681"
},
{
"category": "external",
"summary": "https://go.dev/cl/781703",
"url": "https://go.dev/cl/781703"
},
{
"category": "external",
"summary": "https://go.dev/issue/79574",
"url": "https://go.dev/issue/79574"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8",
"url": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5029",
"url": "https://pkg.go.dev/vuln/GO-2026-5029"
}
],
"release_date": "2026-05-22T15:01:21.975000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T15:06:01+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
},
{
"category": "workaround",
"details": "To mitigate this flaw, applications processing untrusted HTML input must implement strict input sanitization and ensure all output is properly encoded before rendering. Deploying a comprehensive Content Security Policy (CSP) can restrict script execution, further reducing the attack surface. Administrators should review application configurations to ensure adequate protection against XSS.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/html: golang.org/x/net/html: Arbitrary code execution via Cross-Site Scripting"
},
{
"cve": "CVE-2026-32280",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-04-08T02:01:19.572351+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456339"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go standard library\u0027s certificate chain building process. Systems utilizing Go applications that process untrusted TLS certificates or X.509 certificate chains are susceptible to resource exhaustion when presented with an excessive number of intermediate certificates, potentially leading to service unavailability. This flaw impacts applications directly using `crypto/x509` or `crypto/tls`.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32280"
},
{
"category": "external",
"summary": "RHBZ#2456339",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32280",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32280"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280"
},
{
"category": "external",
"summary": "https://go.dev/cl/758320",
"url": "https://go.dev/cl/758320"
},
{
"category": "external",
"summary": "https://go.dev/issue/78282",
"url": "https://go.dev/issue/78282"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4947",
"url": "https://pkg.go.dev/vuln/GO-2026-4947"
}
],
"release_date": "2026-04-08T01:06:58.595000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T15:06:01+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building"
},
{
"cve": "CVE-2026-32281",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2026-04-08T02:01:00.930989+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456333"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go\u0027s `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw occurs during the validation of otherwise trusted certificate chains that contain a large number of policy mappings, leading to excessive resource consumption. Exploitation requires an attacker to present a specially crafted, yet trusted, certificate chain which would require the attacker has already compromised a trusted certificate root. Red Hat continuously monitors certificate authorities and curates the set which is trusted by default for Red Hat products.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32281"
},
{
"category": "external",
"summary": "RHBZ#2456333",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456333"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32281",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32281"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281"
},
{
"category": "external",
"summary": "https://go.dev/cl/758061",
"url": "https://go.dev/cl/758061"
},
{
"category": "external",
"summary": "https://go.dev/issue/78281",
"url": "https://go.dev/issue/78281"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4946",
"url": "https://pkg.go.dev/vuln/GO-2026-4946"
}
],
"release_date": "2026-04-08T01:06:58.354000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T15:06:01+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation"
},
{
"cve": "CVE-2026-33811",
"cwe": {
"id": "CWE-1341",
"name": "Multiple Releases of Same Resource or Handle"
},
"discovery_date": "2026-05-07T20:01:34.913869+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467822"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `net` package of Go (golang), specifically when using the `LookupCNAME` function with the `cgo` DNS resolver. A remote attacker could exploit this by providing a very long Canonical Name (CNAME) response. This can trigger a double-free of C memory, leading to a crash and a Denial of Service (DoS) for the affected application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go `net` package, affecting applications configured to use the `cgo` DNS resolver. A remote attacker could trigger a double-free memory error by providing a very long CNAME response, leading to a crash of the vulnerable application and impacting service availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33811"
},
{
"category": "external",
"summary": "RHBZ#2467822",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467822"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33811",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33811"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33811",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33811"
},
{
"category": "external",
"summary": "https://go.dev/cl/767860",
"url": "https://go.dev/cl/767860"
},
{
"category": "external",
"summary": "https://go.dev/issue/78803",
"url": "https://go.dev/issue/78803"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M",
"url": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4981",
"url": "https://pkg.go.dev/vuln/GO-2026-4981"
}
],
"release_date": "2026-05-07T19:41:19.285000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T15:06:01+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
},
{
"category": "workaround",
"details": "To mitigate this issue, applications can be configured to use the pure Go DNS resolver instead of the `cgo` DNS resolver. This can be achieved by setting the `GODEBUG` environment variable to `netdns=go`. For example, to run a Go application with this mitigation: `GODEBUG=netdns=go /path/to/your/go/application`. This change may require restarting affected applications or services to take effect. Users should verify that this change does not negatively impact DNS resolution for their specific application environment.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME"
},
{
"cve": "CVE-2026-39820",
"cwe": {
"id": "CWE-606",
"name": "Unchecked Input for Loop Condition"
},
"discovery_date": "2026-05-07T20:01:27.800929+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467820"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `net/mail` package of the Go programming language. An attacker could provide specially crafted inputs to the `ParseAddress`, `ParseAddressList`, or `ParseDate` functions. This could lead to excessive consumption of CPU and memory resources, resulting in a Denial of Service (DoS) for applications processing these inputs.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/mail: golang: Go net/mail: Denial of Service via crafted email inputs",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go `net/mail` package. Applications processing untrusted email inputs via `ParseAddress`, `ParseAddressList`, or `ParseDate` functions are susceptible to excessive resource consumption, which can lead to service unavailability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39820"
},
{
"category": "external",
"summary": "RHBZ#2467820",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467820"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39820",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39820"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39820",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39820"
},
{
"category": "external",
"summary": "https://go.dev/cl/759940",
"url": "https://go.dev/cl/759940"
},
{
"category": "external",
"summary": "https://go.dev/issue/78566",
"url": "https://go.dev/issue/78566"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M",
"url": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4986",
"url": "https://pkg.go.dev/vuln/GO-2026-4986"
}
],
"release_date": "2026-05-07T19:41:19.854000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T15:06:01+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/mail: golang: Go net/mail: Denial of Service via crafted email inputs"
},
{
"cve": "CVE-2026-39828",
"cwe": {
"id": "CWE-281",
"name": "Improper Preservation of Permissions"
},
"discovery_date": "2026-05-22T04:01:46.775641+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480687"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. A remote attacker could exploit this vulnerability when an SSH server authentication callback returned a PartialSuccessError with non-nil permissions. This flaw caused these permissions to be silently discarded, potentially bypassing certificate restrictions, such as a force-command, after a second authentication factor succeeded. This could lead to unauthorized command execution or access.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important security flaw in the `golang.org/x/crypto/ssh` library. When an SSH server utilizing this library is configured with specific authentication callbacks that return a `PartialSuccessError` with non-nil permissions, an attacker could bypass intended certificate restrictions, such as `force-command`. This bypass could lead to unauthorized command execution or access on affected Red Hat systems configured with multi-factor authentication and certificate-based access controls.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "RHBZ#2480687",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480687"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39828",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39828"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39828",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39828"
},
{
"category": "external",
"summary": "https://go.dev/cl/781621",
"url": "https://go.dev/cl/781621"
},
{
"category": "external",
"summary": "https://go.dev/issue/79562",
"url": "https://go.dev/issue/79562"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5014",
"url": "https://pkg.go.dev/vuln/GO-2026-5014"
}
],
"release_date": "2026-05-22T02:31:26.883000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T15:06:01+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions"
},
{
"cve": "CVE-2026-39829",
"cwe": {
"id": "CWE-1284",
"name": "Improper Validation of Specified Quantity in Input"
},
"discovery_date": "2026-05-22T04:01:30.092249+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480681"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. The RSA and DSA public key parsers in the affected component did not enforce size limits on key parameters. This vulnerability allows an unauthenticated client to provide a crafted public key with an excessively large modulus or DSA parameter during public key authentication. Successful exploitation could lead to a denial of service (DoS) due to prolonged CPU consumption during signature verification.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in golang.org/x/crypto/ssh is rated as Important. An unauthenticated remote attacker could trigger a denial of service by providing a specially crafted public key with excessively large parameters during SSH public key authentication. This could lead to prolonged CPU consumption on the server, impacting service availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "RHBZ#2480681",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480681"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39829",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39829"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39829",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39829"
},
{
"category": "external",
"summary": "https://go.dev/cl/781641",
"url": "https://go.dev/cl/781641"
},
{
"category": "external",
"summary": "https://go.dev/cl/781661",
"url": "https://go.dev/cl/781661"
},
{
"category": "external",
"summary": "https://go.dev/issue/79565",
"url": "https://go.dev/issue/79565"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5018",
"url": "https://pkg.go.dev/vuln/GO-2026-5018"
}
],
"release_date": "2026-05-22T02:31:27.324000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T15:06:01+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters"
},
{
"cve": "CVE-2026-39830",
"cwe": {
"id": "CWE-772",
"name": "Missing Release of Resource after Effective Lifetime"
},
"discovery_date": "2026-05-22T04:01:38.517202+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480684"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. A remote malicious SSH peer can exploit this by sending unsolicited global request responses, which fills an internal buffer and blocks the connection\u0027s read loop. This prevents the associated resources from being released, leading to a resource leak per connection. The consequence is a Denial of Service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service flaw in `golang.org/x/crypto/ssh`. A remote, unauthenticated attacker can exploit this vulnerability by sending unsolicited global request responses to an affected SSH server, leading to resource exhaustion and a denial of service. The impact is considered Important due to the potential for unauthenticated remote disruption of services utilizing the vulnerable SSH library.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "RHBZ#2480684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480684"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39830",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39830"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39830",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39830"
},
{
"category": "external",
"summary": "https://go.dev/cl/781640",
"url": "https://go.dev/cl/781640"
},
{
"category": "external",
"summary": "https://go.dev/cl/781664",
"url": "https://go.dev/cl/781664"
},
{
"category": "external",
"summary": "https://go.dev/issue/79564",
"url": "https://go.dev/issue/79564"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5017",
"url": "https://pkg.go.dev/vuln/GO-2026-5017"
}
],
"release_date": "2026-05-22T02:31:27.208000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T15:06:01+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
},
{
"category": "workaround",
"details": "To mitigate this denial of service vulnerability, restrict network access to any service that utilizes the `golang.org/x/crypto/ssh` library and is exposed to untrusted networks. Implement firewall rules to allow connections only from trusted hosts or networks. This action limits the ability of malicious peers to send unsolicited global request responses. A restart of the affected service may be necessary for the new network rules to be applied effectively.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses"
},
{
"cve": "CVE-2026-39831",
"cwe": {
"id": "CWE-347",
"name": "Improper Verification of Cryptographic Signature"
},
"discovery_date": "2026-05-22T04:01:12.861178+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480675"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. The Verify() method, responsible for FIDO/U2F security key types, did not properly check for user presence. This allowed signatures to be accepted without requiring a physical touch on the hardware security key. As a result, an attacker could potentially use a hardware security key in an unattended manner, bypassing a critical security control designed to ensure user intent.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Security key bypass due to missing user presence check",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39831"
},
{
"category": "external",
"summary": "RHBZ#2480675",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480675"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39831",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39831"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39831",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39831"
},
{
"category": "external",
"summary": "https://go.dev/cl/781662",
"url": "https://go.dev/cl/781662"
},
{
"category": "external",
"summary": "https://go.dev/issue/79566",
"url": "https://go.dev/issue/79566"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5019",
"url": "https://pkg.go.dev/vuln/GO-2026-5019"
}
],
"release_date": "2026-05-22T02:31:27.436000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T15:06:01+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Security key bypass due to missing user presence check"
},
{
"cve": "CVE-2026-39832",
"cwe": {
"id": "CWE-281",
"name": "Improper Preservation of Permissions"
},
"discovery_date": "2026-05-22T04:01:41.402561+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480685"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh/agent. When a key was added to a remote agent, security restrictions, known as constraint extensions, were not properly processed during the request. This allowed these restrictions to be silently removed when keys were forwarded, leading to the unrestricted use of the key on the remote host. This vulnerability could enable an attacker to bypass intended security controls and perform unauthorized actions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to improper handling of key restrictions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important vulnerability in `golang.org/x/crypto/ssh/agent` allows for a security bypass when SSH keys with destination restrictions are forwarded via an SSH agent. This flaw could lead to unintended exposure of SSH keys, enabling an attacker to use the forwarded key without the specified restrictions on remote hosts. Red Hat products utilizing `golang.org/x/crypto/ssh/agent` for key forwarding may be affected if users rely on constraint extensions for limiting key usage.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39832"
},
{
"category": "external",
"summary": "RHBZ#2480685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480685"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39832",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39832"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39832",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39832"
},
{
"category": "external",
"summary": "https://go.dev/cl/778642",
"url": "https://go.dev/cl/778642"
},
{
"category": "external",
"summary": "https://go.dev/issue/79435",
"url": "https://go.dev/issue/79435"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5006",
"url": "https://pkg.go.dev/vuln/GO-2026-5006"
}
],
"release_date": "2026-05-22T02:31:26.660000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T15:06:01+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to improper handling of key restrictions"
},
{
"cve": "CVE-2026-39835",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2026-05-22T04:01:27.279943+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480680"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. SSH servers configured to use CertChecker as a public key callback, without explicitly setting IsUserAuthority or IsHostAuthority, are vulnerable. A remote attacker can exploit this by presenting a specially crafted certificate, causing the server to panic and resulting in a Denial of Service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang: golang.org/x/crypto/ssh: Denial of Service via crafted SSH certificate",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service flaw in `golang.org/x/crypto/ssh` affecting SSH servers that utilize `CertChecker` as a public key callback without explicitly configuring `IsUserAuthority` or `IsHostAuthority`. A remote, unauthenticated attacker can trigger a server panic by presenting a specially crafted certificate, leading to service disruption. Exploitation requires a specific, non-default configuration of the `CertChecker`.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39835"
},
{
"category": "external",
"summary": "RHBZ#2480680",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480680"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39835",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39835"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39835",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39835"
},
{
"category": "external",
"summary": "https://go.dev/cl/781660",
"url": "https://go.dev/cl/781660"
},
{
"category": "external",
"summary": "https://go.dev/issue/79563",
"url": "https://go.dev/issue/79563"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5015",
"url": "https://pkg.go.dev/vuln/GO-2026-5015"
}
],
"release_date": "2026-05-22T02:31:26.982000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T15:06:01+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang: golang.org/x/crypto/ssh: Denial of Service via crafted SSH certificate"
},
{
"cve": "CVE-2026-42499",
"cwe": {
"id": "CWE-1046",
"name": "Creation of Immutable Text Using String Concatenation"
},
"discovery_date": "2026-05-07T20:00:51.685602+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467809"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `net/mail` package within the Go standard library. A remote attacker could provide specially crafted, pathological email addresses. When these malformed email addresses are parsed by the `consumePhrase` function, it can lead to excessive resource consumption due to quadratic string concatenation, resulting in a Denial of Service (DoS) condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/mail: golang: net/mail: Denial of Service via pathological email address parsing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the `net/mail` package of the Go standard library. A remote attacker can exploit this flaw by sending specially crafted email addresses, leading to excessive resource consumption and a denial of service in Go applications that parse email addresses using the affected library.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42499"
},
{
"category": "external",
"summary": "RHBZ#2467809",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467809"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42499",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42499"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42499",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42499"
},
{
"category": "external",
"summary": "https://go.dev/cl/771520",
"url": "https://go.dev/cl/771520"
},
{
"category": "external",
"summary": "https://go.dev/issue/78987",
"url": "https://go.dev/issue/78987"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M",
"url": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4977",
"url": "https://pkg.go.dev/vuln/GO-2026-4977"
}
],
"release_date": "2026-05-07T19:41:18.615000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T15:06:01+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/mail: golang: net/mail: Denial of Service via pathological email address parsing"
},
{
"cve": "CVE-2026-46597",
"cwe": {
"id": "CWE-681",
"name": "Incorrect Conversion between Numeric Types"
},
"discovery_date": "2026-05-22T04:01:21.721980+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480678"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. A remote attacker could send specially crafted inputs to the AES-GCM packet decoder. This could lead to an incorrectly placed cast from bytes to an integer, causing a server-side panic and resulting in a Denial of Service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted AES-GCM packet decoder inputs",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important denial of service flaw in `golang.org/x/crypto/ssh` allows a remote attacker to trigger a server-side panic by sending specially crafted inputs to the AES-GCM packet decoder. This vulnerability could lead to service unavailability in Red Hat products that incorporate and expose SSH services built with the affected `golang.org/x/crypto/ssh` component.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-46597"
},
{
"category": "external",
"summary": "RHBZ#2480678",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480678"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-46597",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-46597"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-46597",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-46597"
},
{
"category": "external",
"summary": "https://go.dev/cl/781620",
"url": "https://go.dev/cl/781620"
},
{
"category": "external",
"summary": "https://go.dev/issue/79561",
"url": "https://go.dev/issue/79561"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5013",
"url": "https://pkg.go.dev/vuln/GO-2026-5013"
}
],
"release_date": "2026-05-22T02:31:26.754000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T15:06:01+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted AES-GCM packet decoder inputs"
},
{
"cve": "CVE-2026-53488",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"discovery_date": "2026-07-01T02:01:09.589815+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2495815"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in containerd, an open-source container runtime. The Container Runtime Interface (CRI) plugin, which manages container operations, fails to validate labels propagated from an image configuration to a container. This oversight could enable an attacker to execute arbitrary commands on the host system through a plugin that processes these unvalidated labels. The primary impact is host-root command execution, allowing unauthorized control over the underlying system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/containerd/containerd: containerd: Host-root command execution via unvalidated image config labels in CRI plugin",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "A flaw was found in containerd where the CRI plugin propagates labels from an image configuration (LABEL instruction in a Dockerfile) to a container without validation. This may result in executing an arbitrary command on the host via a plugin that consumes container labels for operations, such as the restart-monitor binary:// logger. An attacker who can cause a crafted container image to be pulled and run can achieve host-level code execution.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-53488"
},
{
"category": "external",
"summary": "RHBZ#2495815",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2495815"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-53488",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53488"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-53488",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-53488"
},
{
"category": "external",
"summary": "https://github.com/containerd/containerd/security/advisories/GHSA-xhf5-7wjv-pqxp",
"url": "https://github.com/containerd/containerd/security/advisories/GHSA-xhf5-7wjv-pqxp"
}
],
"release_date": "2026-07-01T00:11:20.610000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T15:06:01+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36319"
},
{
"category": "workaround",
"details": "Restrict container image pulls to trusted registries using admission policies or image signature verification. Where containerd is used as the container runtime, disable or restrict the binary:// logger URI scheme in the containerd configuration to prevent the label-to-logger attack path.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:42ce9a730012343eec85c5b69eb163311580df4682de47ca435043dff92c2dda_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6204d3577ee741f812133ff2d88499c807aa3ad58432f3304c1a35fc112189fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:d68367f3f9e3e785b7cfbd1d03e7c9ddbf8aed846fd7ff2d0ac03413c63e51e1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbc7d9fa8d47d71146098bdbcf2932684466d48df2a9e71eb19e3bbe185eaa3c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:13b23d3626a7c286bc04db231b9c826914c03c4c7a8bebf031d973ac03a8fc31_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7d8340d149a12f7340ba43a87d6df208eb607a0f579b25efd1360bbe3aafb2e5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ce31d01779b4a6e31d3ccc4aa50da2d5c5c40e01ed9d40327da6c41c0a486a2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:ef34f9f1927d68839bf1433f6a2c4753edbaa7bc1df54ac491643a4687aac2bf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:48f1df601e96894b983b79cda2c10e1706b21056a3637b92a4b0e0c1f4cf0a19_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:a757f885d03f92b46077f763a2e3695428efca08d1d170a850f6f35112f66416_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:ac4aeacd669e6acd8b6513ed2e2d7bf065c7dc5e7b94ad4fa6287babab054d14_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c11dd07b70d80f5705d62fdf5a0df3b20ef5bc124ed0ebb17d63e475a3970635_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8580ba5ee1456d0def514182dbcd5b9d131e82c9e79a51ef1a44002891b1b3a0_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:2f654cd657b76268e96f48c805d98b6a01193d5472e3b770d8e76d79b5c05f3f_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:934b313047a61e8f78e1a8b17083c4b5ad85f658f1314993e36710ae5e525595_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:96c38c3f664be6d572f4c267861008387d72e4a51e9d3f6eb9c90dab0ff3dbdc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a2a01dc772b7343f80be6f0df86143abbbddac487d39ff9dca91248879cfae3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4333f349152fd58df6e05ebe890c360bea2cf6d09c38b51cc4b0628132f85438_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a0d6f0dba57d06ba8d1ba7e5527fac907ecfcabab5ed1df0af3e664f5f831709_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d58d334c4ac8b3ec12c25dda7bc0c54aa463f5c6ad072d019deb4bef0e4e0388_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:edd5d70d99d538af0d2e4e8af795670f9bf75db5f33d5916d8fe2338ad783f69_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3d1ad6886063f535a79ac17e37aa000255d7e609e964256e90a7105393f99524_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9b22d40703ae9073ce13aa8b50a2cac2976ec7641977a8a7b8c3a0c5b4c89e69_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9df1184a0d86761b2f9fe173a446da819c89b95fd4e7759fc13b8f6fd6d563b1_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ac2c3fa4bb41c9f5e6d6f8cc400a250206923a3d74d72c52d7c30664baabcaaf_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:597c40e984b4e6c8b39fd07e95116b33050c0119c8064e84ab32966db2b4c28f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6030687a0992fe6c2bf15e4455aa0601061423fb20a0153b753712ec4c8b6b8e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8fee28cec9066005086a5e9d2b77ec5b351463dd268f5a09176ee0b47ba7c09d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8aa39c7c288e4ad2813b2cea30826c99c3e8e25cc1d43b9d3e5b5a95a663d56_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:08140a22a837cad3ce68d2e3f5cb07b103583befa64e4a1f90d348a67dd5e661_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:79603118166a758104b5e29d90b0d08a25c7797b7e10a0a0a7588325fe5a8796_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b48725f67d160b2d277f65b7f9d84bea0477ade659a4739616d68139f60799d5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d055d3d7d21c787ff41fce7ed08ee1185962be6f222469a85cce0c45c8375f46_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0d114307f2e9c510e898c8d793d3e4c18d7d4ca38a6487a669e93c1880b500ae_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3c4b50e375c8fabf7a259cc99cae49cddb2d46e671536975cee344e8d1880334_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4e24c3568384f62a6efefe5a97e3844c11530eb542131ad1ce6eec0aef236129_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6e9d49feda9a820d4de114e859a327c2ed1798fb16f12a17832d890ff62eab80_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:47ed3feae50625198753e8b325cd1d9906b54446f731311004cba122113e3595_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:48b11cd33e443dc69a7d0d20d0119320b54d09bd47b54a4dda4a749c55ea9900_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:6dcefd3e870252fd6c4589113af0880cd5df8644738ff558c8f3c89ef81563ec_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8d32e8630408d08ac608edf7c5f3b11fea114bbda3ab0dd9a6360cdb2b6b1931_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0d7e7363ef60f1953fb01ffecdb40aa55b8bdef0ead60c7b1c76c2cae34749c7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:865043d3b398721e1c82b798ee334418438f8ede5b6166517b76fb731aae2a59_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:aa5725b9a86e24ff3bd64a454f957b46be14d5adfd148a6927e5d7613ef7c64b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:bff84375341986d6c7c404dca01c5e1305daf9c7e01a2b13ba416487160fe841_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/containerd/containerd: containerd: Host-root command execution via unvalidated image config labels in CRI plugin"
}
]
}
RHSA-2026:36625
Vulnerability from csaf_redhat - Published: 2026-07-08 08:08 - Updated: 2026-07-10 22:47A flaw was found in Red Hat Advanced Cluster Security for Kubernetes (RHACS). Central does not limit the depth of GraphQL queries served on the authenticated GraphQL API. An authenticated user with a valid API token can send deeply nested queries that cause excessive resource consumption in Central, resulting in a denial of service for the management plane.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64 | — |
Workaround
|
A flaw was found in form-data, a library for creating readable multipart/form-data streams. A remote attacker can exploit this vulnerability by injecting carriage return (CR), line feed (LF), or double-quote (") characters into the `field` argument of `FormData#append` or the `filename` option. This allows the attacker to inject additional headers or smuggle entire additional multipart parts into requests, potentially enabling them to add or override form fields and compromise data integrity.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64 | — |
Workaround
|
A flaw was found in golang.org/x/net/html. A remote attacker could exploit this vulnerability by providing specially crafted HTML. When this arbitrary HTML is parsed and rendered, it can result in an unexpected HTML tree, bypassing input sanitization. This can be leveraged to execute Cross-Site Scripting (XSS) attacks, potentially leading to arbitrary code execution in applications that use the affected component.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64 | — |
Workaround
|
A flaw was found in the `net` package of Go (golang), specifically when using the `LookupCNAME` function with the `cgo` DNS resolver. A remote attacker could exploit this by providing a very long Canonical Name (CNAME) response. This can trigger a double-free of C memory, leading to a crash and a Denial of Service (DoS) for the affected application.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64 | — |
Workaround
|
A flaw was found in the `net/mail` package of the Go programming language. An attacker could provide specially crafted inputs to the `ParseAddress`, `ParseAddressList`, or `ParseDate` functions. This could lead to excessive consumption of CPU and memory resources, resulting in a Denial of Service (DoS) for applications processing these inputs.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. A remote attacker could exploit this vulnerability when an SSH server authentication callback returned a PartialSuccessError with non-nil permissions. This flaw caused these permissions to be silently discarded, potentially bypassing certificate restrictions, such as a force-command, after a second authentication factor succeeded. This could lead to unauthorized command execution or access.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. The RSA and DSA public key parsers in the affected component did not enforce size limits on key parameters. This vulnerability allows an unauthenticated client to provide a crafted public key with an excessively large modulus or DSA parameter during public key authentication. Successful exploitation could lead to a denial of service (DoS) due to prolonged CPU consumption during signature verification.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. A remote malicious SSH peer can exploit this by sending unsolicited global request responses, which fills an internal buffer and blocks the connection's read loop. This prevents the associated resources from being released, leading to a resource leak per connection. The consequence is a Denial of Service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. The Verify() method, responsible for FIDO/U2F security key types, did not properly check for user presence. This allowed signatures to be accepted without requiring a physical touch on the hardware security key. As a result, an attacker could potentially use a hardware security key in an unattended manner, bypassing a critical security control designed to ensure user intent.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64 | — |
A flaw was found in golang.org/x/crypto/ssh/agent. When a key was added to a remote agent, security restrictions, known as constraint extensions, were not properly processed during the request. This allowed these restrictions to be silently removed when keys were forwarded, leading to the unrestricted use of the key on the remote host. This vulnerability could enable an attacker to bypass intended security controls and perform unauthorized actions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. SSH servers configured to use CertChecker as a public key callback, without explicitly setting IsUserAuthority or IsHostAuthority, are vulnerable. A remote attacker can exploit this by presenting a specially crafted certificate, causing the server to panic and resulting in a Denial of Service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64 | — |
Workaround
|
A flaw was found in the `net/mail` package within the Go standard library. A remote attacker could provide specially crafted, pathological email addresses. When these malformed email addresses are parsed by the `consumePhrase` function, it can lead to excessive resource consumption due to quadratic string concatenation, resulting in a Denial of Service (DoS) condition.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. A remote attacker could send specially crafted inputs to the AES-GCM packet decoder. This could lead to an incorrectly placed cast from bytes to an integer, causing a server-side panic and resulting in a Denial of Service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64 | — |
Workaround
|
A flaw was found in JavaScript Cookie (js-cookie). This vulnerability allows a remote attacker to manipulate cookie attributes by exploiting a prototype pollution issue within the `assign()` helper function. When processing specially crafted JSON input, the flaw enables an attacker to hijack the prototype of a cookie's attribute object. This allows the attacker to set sensitive cookie attributes such as `domain`, `secure`, `samesite`, `expires`, and `path`, potentially leading to security bypasses or session manipulation.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64 | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le | — | ||
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64 | — |
A flaw was found in containerd, an open-source container runtime. The Container Runtime Interface (CRI) plugin, which manages container operations, fails to validate labels propagated from an image configuration to a container. This oversight could enable an attacker to execute arbitrary commands on the host system through a plugin that processes these unvalidated labels. The primary impact is host-root command execution, allowing unauthorized control over the underlying system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images are now available for Red Hat Advanced Cluster Security\n(RHACS), which typically include new features, bug fixes, and/or\nsecurity patches.",
"title": "Topic"
},
{
"category": "general",
"text": "See the release notes (link in the references section) for a\ndescription of the fixes and enhancements in this particular release.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:36625",
"url": "https://access.redhat.com/errata/RHSA-2026:36625"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-12143",
"url": "https://access.redhat.com/security/cve/CVE-2026-12143"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25681",
"url": "https://access.redhat.com/security/cve/CVE-2026-25681"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33811",
"url": "https://access.redhat.com/security/cve/CVE-2026-33811"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39820",
"url": "https://access.redhat.com/security/cve/CVE-2026-39820"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39828",
"url": "https://access.redhat.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39829",
"url": "https://access.redhat.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39830",
"url": "https://access.redhat.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39831",
"url": "https://access.redhat.com/security/cve/CVE-2026-39831"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39832",
"url": "https://access.redhat.com/security/cve/CVE-2026-39832"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39835",
"url": "https://access.redhat.com/security/cve/CVE-2026-39835"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42499",
"url": "https://access.redhat.com/security/cve/CVE-2026-42499"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-46597",
"url": "https://access.redhat.com/security/cve/CVE-2026-46597"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-46625",
"url": "https://access.redhat.com/security/cve/CVE-2026-46625"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-53488",
"url": "https://access.redhat.com/security/cve/CVE-2026-53488"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-9165",
"url": "https://access.redhat.com/security/cve/CVE-2026-9165"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.10/html-single/release_notes/index#about-this-release-4105_release-notes-410",
"url": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.10/html-single/release_notes/index#about-this-release-4105_release-notes-410"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_36625.json"
}
],
"title": "Red Hat Security Advisory: RHACS 4.10.5 security and bug fix update",
"tracking": {
"current_release_date": "2026-07-10T22:47:17+00:00",
"generator": {
"date": "2026-07-10T22:47:17+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.2"
}
},
"id": "RHSA-2026:36625",
"initial_release_date": "2026-07-08T08:08:13+00:00",
"revision_history": [
{
"date": "2026-07-08T08:08:13+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-07-08T08:08:21+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-10T22:47:17+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product": {
"name": "Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:advanced_cluster_security:4.10::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Advanced Cluster Security for Kubernetes"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256%3A05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=1783357140"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256%3A74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=1782187369"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-fact-rhel8@sha256%3A41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8\u0026tag=1782356145"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256%3A85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=1783357140"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256%3A42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=1783357140"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256%3Ac77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=1783357140"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256%3A223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=1783357140"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256%3A7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=1782891789"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256%3A9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=1782891789"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256%3A94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=1782891789"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256%3A1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=1782891789"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256%3A0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=1783357140"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256%3A98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=1783357140"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256%3A5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=1783357140"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256%3A4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=1782187369"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-fact-rhel8@sha256%3A1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8\u0026tag=1782356145"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256%3Afe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=1783357140"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256%3Aa0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=1783357140"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256%3A49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=1783357140"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256%3A137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=1782891789"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256%3A8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=1782891789"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256%3Ae7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=1782891789"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256%3Ad048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=1782891789"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256%3A4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=1783357140"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256%3A07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=1783357140"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256%3A81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=1783357140"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256%3A26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=1782187369"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256%3A5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=1783357140"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256%3Ac5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=1783357140"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256%3A646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=1783357140"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256%3A85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=1782891789"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256%3Af4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=1782891789"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256%3A86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=1782891789"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256%3A75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=1782891789"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256%3A2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=1783357140"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256%3Ae723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=1783357140"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256%3Adc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=1783357140"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256%3Aafeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=1782187369"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256%3A065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=1783357140"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256%3Ac8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=1783357140"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256%3Af8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=1783357140"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256%3A9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=1782891789"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256%3Aeba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=1782891789"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256%3A5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=1782891789"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256%3A48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=1782891789"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256%3A139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=1783357140"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256%3A57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=1783357140"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.10",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.10"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Moritz Clasmeier"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2026-9165",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2026-05-21T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480505"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Red Hat Advanced Cluster Security for Kubernetes (RHACS). Central does not limit the depth of GraphQL queries served on the authenticated GraphQL API. An authenticated user with a valid API token can send deeply nested queries that cause excessive resource consumption in Central, resulting in a denial of service for the management plane.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "stackrox: stackrox: Unbounded GraphQL query depth allows authenticated denial of service",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security is aware of this issue affecting RHACS Central. This flaw allows an authenticated user to reduce availability of the Central management component. Red Hat is not aware of malicious exploitation of this issue outside of coordinated testing. Updates addressing this issue will be released according to the RHACS support lifecycle. Refer to the associated errata when available for affected versions and update instructions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-9165"
},
{
"category": "external",
"summary": "RHBZ#2480505",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480505"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-9165",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-9165"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-9165",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-9165"
}
],
"release_date": "2026-07-06T08:38:30.568000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T08:08:13+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36625"
},
{
"category": "workaround",
"details": "There is no complete mitigation other than installing the update once\navailable.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "stackrox: stackrox: Unbounded GraphQL query depth allows authenticated denial of service"
},
{
"cve": "CVE-2026-12143",
"cwe": {
"id": "CWE-93",
"name": "Improper Neutralization of CRLF Sequences (\u0027CRLF Injection\u0027)"
},
"discovery_date": "2026-06-12T19:00:57.360953+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2488480"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in form-data, a library for creating readable multipart/form-data streams. A remote attacker can exploit this vulnerability by injecting carriage return (CR), line feed (LF), or double-quote (\") characters into the `field` argument of `FormData#append` or the `filename` option. This allows the attacker to inject additional headers or smuggle entire additional multipart parts into requests, potentially enabling them to add or override form fields and compromise data integrity.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "form-data: form-data: Form field override via CRLF injection",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important impact flaw in the form-data library: a remote attacker can inject arbitrary headers or additional multipart parts via CRLF injection in field names or filenames, potentially overriding sensitive form fields and affecting data integrity.\n\nFor RHOAI and RHEL AI, severity is Moderate because affected versions appear only as a transitive npm dependency in RHOAI (dashboard, mod-arch plugins, MLflow UI) and RHEL AI 3.4 bootc images, and those products use fixed field names for uploads rather than passing untrusted user input as multipart field names or filenames. The documented exploit path is therefore not reachable in default deployments. Practical impact is limited to non-default or custom integrations that forward multipart requests using attacker-controlled field names.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-12143"
},
{
"category": "external",
"summary": "RHBZ#2488480",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2488480"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-12143",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-12143"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-12143",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-12143"
},
{
"category": "external",
"summary": "https://cwe.mitre.org/data/definitions/93.html",
"url": "https://cwe.mitre.org/data/definitions/93.html"
},
{
"category": "external",
"summary": "https://github.com/form-data/form-data/commit/64190db548c0179e37206858e39f27cf513e9435",
"url": "https://github.com/form-data/form-data/commit/64190db548c0179e37206858e39f27cf513e9435"
},
{
"category": "external",
"summary": "https://github.com/form-data/form-data/commit/be3f3cf553978bac15a5182f1f3c3d2d38ccf229",
"url": "https://github.com/form-data/form-data/commit/be3f3cf553978bac15a5182f1f3c3d2d38ccf229"
},
{
"category": "external",
"summary": "https://github.com/form-data/form-data/commit/c7133499c2ee1b80c678e411244f4442bf902045",
"url": "https://github.com/form-data/form-data/commit/c7133499c2ee1b80c678e411244f4442bf902045"
},
{
"category": "external",
"summary": "https://github.com/form-data/form-data/security/advisories/GHSA-hmw2-7cc7-3qxx",
"url": "https://github.com/form-data/form-data/security/advisories/GHSA-hmw2-7cc7-3qxx"
},
{
"category": "external",
"summary": "https://html.spec.whatwg.org/multipage/form-control-infrastructure.html#multipart-form-data",
"url": "https://html.spec.whatwg.org/multipage/form-control-infrastructure.html#multipart-form-data"
},
{
"category": "external",
"summary": "https://www.npmjs.com/package/form-data",
"url": "https://www.npmjs.com/package/form-data"
}
],
"release_date": "2026-06-12T18:01:30.362000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T08:08:13+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36625"
},
{
"category": "workaround",
"details": "Applications using the `form-data` library should implement strict input validation and sanitization for all field names and filenames derived from untrusted sources. This prevents the injection of control characters (CR, LF, \") that could lead to header injection or form field overrides. Deployments that exclusively use fixed or trusted field names are not impacted.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "form-data: form-data: Form field override via CRLF injection"
},
{
"cve": "CVE-2026-25681",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2026-05-22T16:01:08.177603+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480761"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/html. A remote attacker could exploit this vulnerability by providing specially crafted HTML. When this arbitrary HTML is parsed and rendered, it can result in an unexpected HTML tree, bypassing input sanitization. This can be leveraged to execute Cross-Site Scripting (XSS) attacks, potentially leading to arbitrary code execution in applications that use the affected component.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/html: golang.org/x/net/html: Arbitrary code execution via Cross-Site Scripting",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important vulnerability in `golang.org/x/net/html` could enable remote attackers to execute Cross-Site Scripting (XSS) attacks, potentially leading to arbitrary code execution. The flaw allows specially crafted HTML to bypass input sanitization during parsing and rendering. Red Hat products are affected if they process untrusted HTML content using the vulnerable component without additional output encoding or robust content security policies.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25681"
},
{
"category": "external",
"summary": "RHBZ#2480761",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480761"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25681",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25681"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25681",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25681"
},
{
"category": "external",
"summary": "https://go.dev/cl/781703",
"url": "https://go.dev/cl/781703"
},
{
"category": "external",
"summary": "https://go.dev/issue/79574",
"url": "https://go.dev/issue/79574"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8",
"url": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5029",
"url": "https://pkg.go.dev/vuln/GO-2026-5029"
}
],
"release_date": "2026-05-22T15:01:21.975000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T08:08:13+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36625"
},
{
"category": "workaround",
"details": "To mitigate this flaw, applications processing untrusted HTML input must implement strict input sanitization and ensure all output is properly encoded before rendering. Deploying a comprehensive Content Security Policy (CSP) can restrict script execution, further reducing the attack surface. Administrators should review application configurations to ensure adequate protection against XSS.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/html: golang.org/x/net/html: Arbitrary code execution via Cross-Site Scripting"
},
{
"cve": "CVE-2026-33811",
"cwe": {
"id": "CWE-1341",
"name": "Multiple Releases of Same Resource or Handle"
},
"discovery_date": "2026-05-07T20:01:34.913869+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467822"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `net` package of Go (golang), specifically when using the `LookupCNAME` function with the `cgo` DNS resolver. A remote attacker could exploit this by providing a very long Canonical Name (CNAME) response. This can trigger a double-free of C memory, leading to a crash and a Denial of Service (DoS) for the affected application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go `net` package, affecting applications configured to use the `cgo` DNS resolver. A remote attacker could trigger a double-free memory error by providing a very long CNAME response, leading to a crash of the vulnerable application and impacting service availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33811"
},
{
"category": "external",
"summary": "RHBZ#2467822",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467822"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33811",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33811"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33811",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33811"
},
{
"category": "external",
"summary": "https://go.dev/cl/767860",
"url": "https://go.dev/cl/767860"
},
{
"category": "external",
"summary": "https://go.dev/issue/78803",
"url": "https://go.dev/issue/78803"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M",
"url": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4981",
"url": "https://pkg.go.dev/vuln/GO-2026-4981"
}
],
"release_date": "2026-05-07T19:41:19.285000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T08:08:13+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36625"
},
{
"category": "workaround",
"details": "To mitigate this issue, applications can be configured to use the pure Go DNS resolver instead of the `cgo` DNS resolver. This can be achieved by setting the `GODEBUG` environment variable to `netdns=go`. For example, to run a Go application with this mitigation: `GODEBUG=netdns=go /path/to/your/go/application`. This change may require restarting affected applications or services to take effect. Users should verify that this change does not negatively impact DNS resolution for their specific application environment.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME"
},
{
"cve": "CVE-2026-39820",
"cwe": {
"id": "CWE-606",
"name": "Unchecked Input for Loop Condition"
},
"discovery_date": "2026-05-07T20:01:27.800929+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467820"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `net/mail` package of the Go programming language. An attacker could provide specially crafted inputs to the `ParseAddress`, `ParseAddressList`, or `ParseDate` functions. This could lead to excessive consumption of CPU and memory resources, resulting in a Denial of Service (DoS) for applications processing these inputs.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/mail: golang: Go net/mail: Denial of Service via crafted email inputs",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go `net/mail` package. Applications processing untrusted email inputs via `ParseAddress`, `ParseAddressList`, or `ParseDate` functions are susceptible to excessive resource consumption, which can lead to service unavailability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39820"
},
{
"category": "external",
"summary": "RHBZ#2467820",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467820"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39820",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39820"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39820",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39820"
},
{
"category": "external",
"summary": "https://go.dev/cl/759940",
"url": "https://go.dev/cl/759940"
},
{
"category": "external",
"summary": "https://go.dev/issue/78566",
"url": "https://go.dev/issue/78566"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M",
"url": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4986",
"url": "https://pkg.go.dev/vuln/GO-2026-4986"
}
],
"release_date": "2026-05-07T19:41:19.854000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T08:08:13+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36625"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/mail: golang: Go net/mail: Denial of Service via crafted email inputs"
},
{
"cve": "CVE-2026-39828",
"cwe": {
"id": "CWE-281",
"name": "Improper Preservation of Permissions"
},
"discovery_date": "2026-05-22T04:01:46.775641+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480687"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. A remote attacker could exploit this vulnerability when an SSH server authentication callback returned a PartialSuccessError with non-nil permissions. This flaw caused these permissions to be silently discarded, potentially bypassing certificate restrictions, such as a force-command, after a second authentication factor succeeded. This could lead to unauthorized command execution or access.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important security flaw in the `golang.org/x/crypto/ssh` library. When an SSH server utilizing this library is configured with specific authentication callbacks that return a `PartialSuccessError` with non-nil permissions, an attacker could bypass intended certificate restrictions, such as `force-command`. This bypass could lead to unauthorized command execution or access on affected Red Hat systems configured with multi-factor authentication and certificate-based access controls.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "RHBZ#2480687",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480687"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39828",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39828"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39828",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39828"
},
{
"category": "external",
"summary": "https://go.dev/cl/781621",
"url": "https://go.dev/cl/781621"
},
{
"category": "external",
"summary": "https://go.dev/issue/79562",
"url": "https://go.dev/issue/79562"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5014",
"url": "https://pkg.go.dev/vuln/GO-2026-5014"
}
],
"release_date": "2026-05-22T02:31:26.883000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T08:08:13+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36625"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions"
},
{
"cve": "CVE-2026-39829",
"cwe": {
"id": "CWE-1284",
"name": "Improper Validation of Specified Quantity in Input"
},
"discovery_date": "2026-05-22T04:01:30.092249+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480681"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. The RSA and DSA public key parsers in the affected component did not enforce size limits on key parameters. This vulnerability allows an unauthenticated client to provide a crafted public key with an excessively large modulus or DSA parameter during public key authentication. Successful exploitation could lead to a denial of service (DoS) due to prolonged CPU consumption during signature verification.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in golang.org/x/crypto/ssh is rated as Important. An unauthenticated remote attacker could trigger a denial of service by providing a specially crafted public key with excessively large parameters during SSH public key authentication. This could lead to prolonged CPU consumption on the server, impacting service availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "RHBZ#2480681",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480681"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39829",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39829"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39829",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39829"
},
{
"category": "external",
"summary": "https://go.dev/cl/781641",
"url": "https://go.dev/cl/781641"
},
{
"category": "external",
"summary": "https://go.dev/cl/781661",
"url": "https://go.dev/cl/781661"
},
{
"category": "external",
"summary": "https://go.dev/issue/79565",
"url": "https://go.dev/issue/79565"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5018",
"url": "https://pkg.go.dev/vuln/GO-2026-5018"
}
],
"release_date": "2026-05-22T02:31:27.324000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T08:08:13+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36625"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters"
},
{
"cve": "CVE-2026-39830",
"cwe": {
"id": "CWE-772",
"name": "Missing Release of Resource after Effective Lifetime"
},
"discovery_date": "2026-05-22T04:01:38.517202+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480684"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. A remote malicious SSH peer can exploit this by sending unsolicited global request responses, which fills an internal buffer and blocks the connection\u0027s read loop. This prevents the associated resources from being released, leading to a resource leak per connection. The consequence is a Denial of Service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service flaw in `golang.org/x/crypto/ssh`. A remote, unauthenticated attacker can exploit this vulnerability by sending unsolicited global request responses to an affected SSH server, leading to resource exhaustion and a denial of service. The impact is considered Important due to the potential for unauthenticated remote disruption of services utilizing the vulnerable SSH library.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "RHBZ#2480684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480684"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39830",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39830"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39830",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39830"
},
{
"category": "external",
"summary": "https://go.dev/cl/781640",
"url": "https://go.dev/cl/781640"
},
{
"category": "external",
"summary": "https://go.dev/cl/781664",
"url": "https://go.dev/cl/781664"
},
{
"category": "external",
"summary": "https://go.dev/issue/79564",
"url": "https://go.dev/issue/79564"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5017",
"url": "https://pkg.go.dev/vuln/GO-2026-5017"
}
],
"release_date": "2026-05-22T02:31:27.208000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T08:08:13+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36625"
},
{
"category": "workaround",
"details": "To mitigate this denial of service vulnerability, restrict network access to any service that utilizes the `golang.org/x/crypto/ssh` library and is exposed to untrusted networks. Implement firewall rules to allow connections only from trusted hosts or networks. This action limits the ability of malicious peers to send unsolicited global request responses. A restart of the affected service may be necessary for the new network rules to be applied effectively.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses"
},
{
"cve": "CVE-2026-39831",
"cwe": {
"id": "CWE-347",
"name": "Improper Verification of Cryptographic Signature"
},
"discovery_date": "2026-05-22T04:01:12.861178+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480675"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. The Verify() method, responsible for FIDO/U2F security key types, did not properly check for user presence. This allowed signatures to be accepted without requiring a physical touch on the hardware security key. As a result, an attacker could potentially use a hardware security key in an unattended manner, bypassing a critical security control designed to ensure user intent.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Security key bypass due to missing user presence check",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39831"
},
{
"category": "external",
"summary": "RHBZ#2480675",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480675"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39831",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39831"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39831",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39831"
},
{
"category": "external",
"summary": "https://go.dev/cl/781662",
"url": "https://go.dev/cl/781662"
},
{
"category": "external",
"summary": "https://go.dev/issue/79566",
"url": "https://go.dev/issue/79566"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5019",
"url": "https://pkg.go.dev/vuln/GO-2026-5019"
}
],
"release_date": "2026-05-22T02:31:27.436000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T08:08:13+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36625"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Security key bypass due to missing user presence check"
},
{
"cve": "CVE-2026-39832",
"cwe": {
"id": "CWE-281",
"name": "Improper Preservation of Permissions"
},
"discovery_date": "2026-05-22T04:01:41.402561+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480685"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh/agent. When a key was added to a remote agent, security restrictions, known as constraint extensions, were not properly processed during the request. This allowed these restrictions to be silently removed when keys were forwarded, leading to the unrestricted use of the key on the remote host. This vulnerability could enable an attacker to bypass intended security controls and perform unauthorized actions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to improper handling of key restrictions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important vulnerability in `golang.org/x/crypto/ssh/agent` allows for a security bypass when SSH keys with destination restrictions are forwarded via an SSH agent. This flaw could lead to unintended exposure of SSH keys, enabling an attacker to use the forwarded key without the specified restrictions on remote hosts. Red Hat products utilizing `golang.org/x/crypto/ssh/agent` for key forwarding may be affected if users rely on constraint extensions for limiting key usage.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39832"
},
{
"category": "external",
"summary": "RHBZ#2480685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480685"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39832",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39832"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39832",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39832"
},
{
"category": "external",
"summary": "https://go.dev/cl/778642",
"url": "https://go.dev/cl/778642"
},
{
"category": "external",
"summary": "https://go.dev/issue/79435",
"url": "https://go.dev/issue/79435"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5006",
"url": "https://pkg.go.dev/vuln/GO-2026-5006"
}
],
"release_date": "2026-05-22T02:31:26.660000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T08:08:13+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36625"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to improper handling of key restrictions"
},
{
"cve": "CVE-2026-39835",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2026-05-22T04:01:27.279943+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480680"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. SSH servers configured to use CertChecker as a public key callback, without explicitly setting IsUserAuthority or IsHostAuthority, are vulnerable. A remote attacker can exploit this by presenting a specially crafted certificate, causing the server to panic and resulting in a Denial of Service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang: golang.org/x/crypto/ssh: Denial of Service via crafted SSH certificate",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service flaw in `golang.org/x/crypto/ssh` affecting SSH servers that utilize `CertChecker` as a public key callback without explicitly configuring `IsUserAuthority` or `IsHostAuthority`. A remote, unauthenticated attacker can trigger a server panic by presenting a specially crafted certificate, leading to service disruption. Exploitation requires a specific, non-default configuration of the `CertChecker`.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39835"
},
{
"category": "external",
"summary": "RHBZ#2480680",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480680"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39835",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39835"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39835",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39835"
},
{
"category": "external",
"summary": "https://go.dev/cl/781660",
"url": "https://go.dev/cl/781660"
},
{
"category": "external",
"summary": "https://go.dev/issue/79563",
"url": "https://go.dev/issue/79563"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5015",
"url": "https://pkg.go.dev/vuln/GO-2026-5015"
}
],
"release_date": "2026-05-22T02:31:26.982000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T08:08:13+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36625"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang: golang.org/x/crypto/ssh: Denial of Service via crafted SSH certificate"
},
{
"cve": "CVE-2026-42499",
"cwe": {
"id": "CWE-1046",
"name": "Creation of Immutable Text Using String Concatenation"
},
"discovery_date": "2026-05-07T20:00:51.685602+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467809"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `net/mail` package within the Go standard library. A remote attacker could provide specially crafted, pathological email addresses. When these malformed email addresses are parsed by the `consumePhrase` function, it can lead to excessive resource consumption due to quadratic string concatenation, resulting in a Denial of Service (DoS) condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/mail: golang: net/mail: Denial of Service via pathological email address parsing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the `net/mail` package of the Go standard library. A remote attacker can exploit this flaw by sending specially crafted email addresses, leading to excessive resource consumption and a denial of service in Go applications that parse email addresses using the affected library.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42499"
},
{
"category": "external",
"summary": "RHBZ#2467809",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467809"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42499",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42499"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42499",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42499"
},
{
"category": "external",
"summary": "https://go.dev/cl/771520",
"url": "https://go.dev/cl/771520"
},
{
"category": "external",
"summary": "https://go.dev/issue/78987",
"url": "https://go.dev/issue/78987"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M",
"url": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4977",
"url": "https://pkg.go.dev/vuln/GO-2026-4977"
}
],
"release_date": "2026-05-07T19:41:18.615000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T08:08:13+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36625"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/mail: golang: net/mail: Denial of Service via pathological email address parsing"
},
{
"cve": "CVE-2026-46597",
"cwe": {
"id": "CWE-681",
"name": "Incorrect Conversion between Numeric Types"
},
"discovery_date": "2026-05-22T04:01:21.721980+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480678"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. A remote attacker could send specially crafted inputs to the AES-GCM packet decoder. This could lead to an incorrectly placed cast from bytes to an integer, causing a server-side panic and resulting in a Denial of Service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted AES-GCM packet decoder inputs",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important denial of service flaw in `golang.org/x/crypto/ssh` allows a remote attacker to trigger a server-side panic by sending specially crafted inputs to the AES-GCM packet decoder. This vulnerability could lead to service unavailability in Red Hat products that incorporate and expose SSH services built with the affected `golang.org/x/crypto/ssh` component.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-46597"
},
{
"category": "external",
"summary": "RHBZ#2480678",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480678"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-46597",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-46597"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-46597",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-46597"
},
{
"category": "external",
"summary": "https://go.dev/cl/781620",
"url": "https://go.dev/cl/781620"
},
{
"category": "external",
"summary": "https://go.dev/issue/79561",
"url": "https://go.dev/issue/79561"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5013",
"url": "https://pkg.go.dev/vuln/GO-2026-5013"
}
],
"release_date": "2026-05-22T02:31:26.754000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T08:08:13+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36625"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted AES-GCM packet decoder inputs"
},
{
"cve": "CVE-2026-46625",
"cwe": {
"id": "CWE-915",
"name": "Improperly Controlled Modification of Dynamically-Determined Object Attributes"
},
"discovery_date": "2026-06-10T22:01:17.685570+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2487740"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in JavaScript Cookie (js-cookie). This vulnerability allows a remote attacker to manipulate cookie attributes by exploiting a prototype pollution issue within the `assign()` helper function. When processing specially crafted JSON input, the flaw enables an attacker to hijack the prototype of a cookie\u0027s attribute object. This allows the attacker to set sensitive cookie attributes such as `domain`, `secure`, `samesite`, `expires`, and `path`, potentially leading to security bypasses or session manipulation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "js-cookie: JavaScript Cookie: Cookie attribute manipulation via prototype pollution",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-46625"
},
{
"category": "external",
"summary": "RHBZ#2487740",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2487740"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-46625",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-46625"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-46625",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-46625"
},
{
"category": "external",
"summary": "https://github.com/js-cookie/js-cookie/commit/eb3c40e89731e99b8970faaf35ddad249c6c0020",
"url": "https://github.com/js-cookie/js-cookie/commit/eb3c40e89731e99b8970faaf35ddad249c6c0020"
},
{
"category": "external",
"summary": "https://github.com/js-cookie/js-cookie/releases/tag/v3.0.7",
"url": "https://github.com/js-cookie/js-cookie/releases/tag/v3.0.7"
},
{
"category": "external",
"summary": "https://github.com/js-cookie/js-cookie/security/advisories/GHSA-qjx8-664m-686j",
"url": "https://github.com/js-cookie/js-cookie/security/advisories/GHSA-qjx8-664m-686j"
}
],
"release_date": "2026-06-10T21:18:05.372000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T08:08:13+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36625"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "js-cookie: JavaScript Cookie: Cookie attribute manipulation via prototype pollution"
},
{
"cve": "CVE-2026-53488",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"discovery_date": "2026-07-01T02:01:09.589815+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2495815"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in containerd, an open-source container runtime. The Container Runtime Interface (CRI) plugin, which manages container operations, fails to validate labels propagated from an image configuration to a container. This oversight could enable an attacker to execute arbitrary commands on the host system through a plugin that processes these unvalidated labels. The primary impact is host-root command execution, allowing unauthorized control over the underlying system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/containerd/containerd: containerd: Host-root command execution via unvalidated image config labels in CRI plugin",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "A flaw was found in containerd where the CRI plugin propagates labels from an image configuration (LABEL instruction in a Dockerfile) to a container without validation. This may result in executing an arbitrary command on the host via a plugin that consumes container labels for operations, such as the restart-monitor binary:// logger. An attacker who can cause a crafted container image to be pulled and run can achieve host-level code execution.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-53488"
},
{
"category": "external",
"summary": "RHBZ#2495815",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2495815"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-53488",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53488"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-53488",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-53488"
},
{
"category": "external",
"summary": "https://github.com/containerd/containerd/security/advisories/GHSA-xhf5-7wjv-pqxp",
"url": "https://github.com/containerd/containerd/security/advisories/GHSA-xhf5-7wjv-pqxp"
}
],
"release_date": "2026-07-01T00:11:20.610000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T08:08:13+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36625"
},
{
"category": "workaround",
"details": "Restrict container image pulls to trusted registries using admission policies or image signature verification. Where containerd is used as the container runtime, disable or restrict the binary:// logger URI scheme in the containerd configuration to prevent the label-to-logger attack path.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:05dd53e6127b9002119c9b45837f57a741aaee7675274f97bd23c85303b24c95_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b5d026bb7988e258bb10d548eae2ee330f84d30be79adee00cf2646968dbaeb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:81e9b12f2153706baceb7c05154ecb69a6c9b225130e80d20a595a91f7bc8742_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:dc3c7562e7246813f0e75f63e01af32a95abb31efc3238f01ddcaa5df483b678_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:26d4969c21b234219e20ede1b3df08fdb1250f39239f8365978d6d0002668eee_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4dae34a8dd2a3f84345fa73aa71b5d4c30629cce316973ec14e95cbcb6e249d6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:74b47f404add83156bb601dd0b3284bf8d7e8de297f950ff00b5f18fb16c5c86_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:afeab885aca2c2b4a3794c1f342bb1c802616546709c11d2466fe664e0b0a5e5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:1f4439c3f97d81af59c66d0e9b4664925ca256ebf5cc14bedf21003b6fe30b2d_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel8@sha256:41cd92ebb4492161a0a2d9cd9afe8ba2a587aa63ce4fdf43d9c5f1e8705ac0e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:065e6e08945d72964d3b73022b8a6cdaed69ac283cdd7ae462bfd54d835ecb79_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5b958f96a409088346cc452d16cff16f1ed0d11f28a1443449badc5081bedc69_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:85f541d097073ced436033f3b28775941b75aaa64ac38e9377b874ff3690344b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fe461141cb449e05b18df94128ada9a2ee4b283e72455cd1b4360d7a2a57ba84_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:c77fd69d41cb6f1f2abd0099cb41758eadf4e96d7b1a979473232bd80788b1e4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:42ff0f634c6a3e4785ebcc9d08e792bdc86bcf53a5f1cadc915a2b02b393a197_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:a0642aac46c7f16bdf83827086151f23b0e23880b316f710bdd2f5d09eae5e46_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c5dcb00a4e0d0966b2438e427933963f3a25c3e84aeb9897c620a6cc0ad055af_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c8c8dbdda50c4db77f0ea2d011933badf07a8e7318c5b6a29b352fc342ce55f6_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:223bf9ac4c07796f59dfe5b5b4da73d755b6ae121c48514d9684ba1b65785630_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:49159080ea7587469f0ad688f9b53d5b5f8e028006031d0371eca9a03d401e3c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:646bde20707db278d3e33a6dfad485699d0b3b9445d894d487a373cb3d56bdcb_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f8457cf58c1a2b220a033b7b324cbb9f2173e10f8a32c35ff802fbdbadcd50bc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:8cf28b9b4d7d9ebc615bd5f20630043abe461b4d047162a92287711c3822eee9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9f15ca532778d22bd840bb5b51ee8548c8a3fa991097e8d71899d1537b4c8387_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eba8efa8ec40900d549d5e8071bf24ab41afcafb11b4c17d67c494c8c9f435a0_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f4a75a14e1d78a9d4fbcda5ea214395e66938a313cb1a07dd39808866992a594_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:5a90532680985ba06e52625661ff66045dbdae81c4193103ef09a9eab051acf5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:86d8078be89cae8446bb15822cc16957aa7dce2c67425e6117df393480af3e41_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:94adcb77707adf13d73da54cb5762aea54a48b954f357a281f459afed4df7ab4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e7d2cb6dd9a1240674ecb8d5eae262486d95de604f2d64e61e59b9bed9cae34a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:137e687ec8b4b32b30e7de5825fa12c428b094fb9c37c239b4ef07e7953e7614_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:7c8c3bbf81a3c4ad1d1147cd994df15e4936ba5db19fe74f8ada73115d2d5683_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:85ef92ca0b10f88e3bd660cdb2d99a08fc6166853a33b536b8d3e7b19514ee95_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9ac38c23ef57028641ab30028677a5cc9c2bd5054dcf9dab72c3718b505d8ea3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1f6e034c6871773f5f971dc4398f8416d83f1b745b528c61b458adad92614674_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:48d73e0709966f458056cbc9cd3eed19fb4483a597741f0fd538e36b92aa3233_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:75684c065067bde2c78f6731eabf2690e49e25793b07ce87f21d5d8fe89c9dd6_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d048c2c56706612f38e3dbea04a8a3955ea1636b41ef3375086029950acc2fed_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:07521ebbd400ffe370c41391de255e771c82cc75f560adea2e4a2ad3f40b8a26_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:57ff8c1f0a4168d757387058de77a31cc9717874d43df52bdaf763897558f38b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:98b6c35b2f0a2cef0b110c358437bb610ba816b0902855760f8dda5eeade190b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:e723ebdd59310426f51ce0cd77c72d1d2cb8e223b14d7f889f8c232356250645_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:0646898c9896dfbd9151bc917670f5182879168a1e144013cefd1cc637997f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:139cb19312fe9b601be3828f0f36bf73499f39f26d417805389ffa335da43714_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2507fd8df47313f86ca76070b33dc310b60540a840e664157a1d7e9c0292495c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.10:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4c044273406544274c30d2406071a216a6e9986c836a1dc57a5d04526bf31530_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/containerd/containerd: containerd: Host-root command execution via unvalidated image config labels in CRI plugin"
}
]
}
RHSA-2026:36754
Vulnerability from csaf_redhat - Published: 2026-07-08 13:07 - Updated: 2026-07-10 17:31A flaw was found in fast-uri. A remote attacker could exploit this vulnerability by crafting a malicious Uniform Resource Identifier (URI) that contains percent-encoded authority delimiters. The fast-uri library incorrectly decodes these delimiters during normalization and then re-emits them as raw separators, which can change the URI's intended authority. This issue allows applications that perform host allowlist checks, redirect validation, or outbound request routing to be steered to a different authority than specified, potentially bypassing security controls.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
A flaw was found in undici. When using Socks5ProxyAgent, undici incorrectly reuses a single connection pool across different origins. This can lead to cross-origin request routing, where sensitive credentials and data intended for one destination are sent to another. Consequently, responses from unintended origins may be trusted, and secure HTTPS connections could be silently downgraded to unencrypted HTTP, resulting in information disclosure and data integrity issues.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in the shell-quote component. The quote() function did not properly validate object-token inputs, allowing line terminators to pass unescaped into the output. A remote attacker could exploit this vulnerability by providing specially crafted input, which a POSIX shell would interpret as a command separator. This could lead to command injection, enabling the attacker to execute arbitrary code on the system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
A flaw was found in json-2-csv. An attacker can bypass the `preventCsvInjection` option to inject malicious formulas into CSV (Comma Separated Values) files. When these manipulated CSV files are opened in spreadsheet applications, the injected formulas can execute, potentially leading to arbitrary code execution or information disclosure.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in undici. When undici's ProxyAgent is configured with a SOCKS5 proxy Uniform Resource Identifier (URI), it silently ignores Transport Layer Security (TLS) options, such as custom Certificate Authorities (CAs). This allows a remote attacker to perform a Man-in-the-Middle (MITM) attack, intercepting and tampering with HTTPS communications. The connection falls back to Node.js's default trust store, bypassing intended security configurations and potentially leading to information disclosure or arbitrary code execution.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in form-data, a library for creating readable multipart/form-data streams. A remote attacker can exploit this vulnerability by injecting carriage return (CR), line feed (LF), or double-quote (") characters into the `field` argument of `FormData#append` or the `filename` option. This allows the attacker to inject additional headers or smuggle entire additional multipart parts into requests, potentially enabling them to add or override form fields and compromise data integrity.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in undici. A malicious WebSocket server can exploit this by streaming numerous small or empty continuation frames. This can bypass per-frame and cumulative-size validation, leading to unbounded memory growth in the client process. The primary consequence is memory exhaustion, resulting in a denial of service (DoS) for affected applications using the undici WebSocket client or WebSocketStream API.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in vm2, an open-source virtual machine (VM) sandbox for Node.js. This vulnerability allows an attacker to escape the sandbox environment by exploiting the `inspect` function. Successful exploitation can lead to arbitrary code execution on the host system, compromising the integrity and confidentiality of the system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
A flaw was found in golang.org/x/net/html. When arbitrary HTML is parsed and then rendered, it can result in an unexpected HTML tree. This allows an attacker to bypass HTML sanitization mechanisms, leading to Cross-Site Scripting (XSS) attacks in applications. Such attacks can result in information disclosure or arbitrary code execution.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
A flaw was found in the `net/mail` package of the Go programming language. An attacker could provide specially crafted inputs to the `ParseAddress`, `ParseAddressList`, or `ParseDate` functions. This could lead to excessive consumption of CPU and memory resources, resulting in a Denial of Service (DoS) for applications processing these inputs.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
A flaw was found in ip-address, a JavaScript library for parsing and manipulating IPv4 and IPv6 addresses. This vulnerability allows a remote attacker to perform cross-site scripting (XSS) by providing untrusted input to the Address6 constructor. When an application renders the output of Address6.group(), Address6.link(), or the AddressError.parseMessage as HTML without proper escaping, the attacker-controlled content can be executed in the user's browser.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in the `net/mail` package within the Go standard library. A remote attacker could provide specially crafted, pathological email addresses. When these malformed email addresses are parsed by the `consumePhrase` function, it can lead to excessive resource consumption due to quadratic string concatenation, resulting in a Denial of Service (DoS) condition.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
A flaw was found in Axios, a promise-based HTTP client, specifically in its Node.js HTTP adapter. When Axios is configured to use an authenticated proxy and follows a redirect, it may inadvertently send the Proxy-Authorization header, containing proxy credentials, to the redirect target. This can lead to the disclosure of sensitive proxy credentials to an unintended remote server.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in Axios. During specific proxy-to-direct redirect flows in the Node.js HTTP adapter, a remote attacker could exploit this vulnerability. The Proxy-Authorization header, which contains proxy credentials and is intended only for the outbound proxy, may be forwarded to the final redirected origin. This can lead to the disclosure of sensitive proxy credentials to an unintended third party.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in Axios, a promise-based HTTP client. When using the fetch adapter, Axios did not properly enforce configured request and response size limits. This vulnerability allows a remote attacker, through a malicious or compromised server, or by supplying a large data URL, to send or receive oversized data bodies. This can lead to resource exhaustion in server-side applications, resulting in a Denial of Service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in Axios, a promise-based HTTP client. This vulnerability occurs because Axios does not properly normalize IPv4-mapped IPv6 addresses. When a NO_PROXY setting is configured to block direct access to specific IPv4 addresses, an attacker can bypass this restriction by using the IPv4-mapped IPv6 form of the address in a request URL. This allows the request to be routed through the proxy, potentially exposing internal services or sensitive information that should otherwise be inaccessible.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in Axios. This vulnerability, a Prototype Pollution "Gadget" attack, allows an attacker to escalate any existing Object.prototype pollution in an application's dependency tree into a full Man-in-the-Middle (MITM) attack. This enables the attacker to intercept, read, and modify all HTTP traffic, including sensitive authentication credentials. The flaw occurs because the `config.proxy` setting is susceptible to prototype pollution, allowing an attacker to inject a malicious proxy server.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in Axios, a promise-based HTTP client. This vulnerability involves prototype pollution gadgets in the request configuration processing. If another vulnerability has already polluted the Object.prototype.transformResponse, affected Axios versions may incorrectly interpret this inherited value as part of the request configuration or as an option validator. Axios does not itself create the prototype pollution. Exploitability requires a separate prototype-pollution vulnerability or equivalent attacker control over Object.prototype before Axios creates a request.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in Axios. A remote attacker, by influencing the XSRF cookie name in a browser environment, could cause the application to construct a regular expression that leads to excessive processing. This can result in a client-side Denial of Service (DoS), where the affected browser tab may freeze, impacting the availability of the application for the user.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in ws, an open source WebSocket client and server for Node.js. The `websocket.close()` implementation is vulnerable to uninitialized memory disclosure when a `TypedArray` is passed as the reason argument. This can lead to the disclosure of sensitive information from uninitialized memory.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
A flaw was found in vm2, an open-source virtual machine (VM) sandbox for Node.js. A remote attacker can exploit this vulnerability by combining specific Buffer function calls and Node.js's ERR_INVALID_ARG_TYPE error. This allows the attacker to obtain the host's TypeError constructor, leading to an escape from the sandbox. Consequently, this enables attackers to run arbitrary code on the host system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in vm2, an open-source virtual machine (VM) sandbox for Node.js. An attacker within the sandbox could exploit incomplete symbol interception and missing security checks to gain control over the host system. This could allow the attacker to execute arbitrary code outside the sandbox environment, leading to a complete compromise of the host.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in vm2, an open-source virtual machine (VM) sandbox for Node.js. A remote attacker could bypass a security check designed to prevent the combination of nested environments and disabled module loading. This bypass occurs because a strict equality check for the `require` option can be circumvented by simply omitting the option, leading to an unintended configuration. Successful exploitation of this vulnerability could allow an attacker to escape the sandbox and achieve arbitrary code execution on the host system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in vm2, a Node.js sandbox. This vulnerability allows sandboxed code to bypass network restrictions by utilizing internal HTTP built-ins, such as _http_client and _http_server. An attacker can exploit this to make outbound HTTP requests or open listening HTTP sockets, even when public network modules are explicitly denied. This could lead to unauthorized information disclosure or further compromise of the system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in vm2, an open-source virtual machine (VM) sandbox for Node.js. This vulnerability allows sandboxed code to bypass intended security restrictions by exploiting missing entries in the denylist for dangerous Node.js built-in functions, specifically `process` and `inspector/promises`. A remote attacker can leverage this to execute arbitrary code in the host process, leading to a complete compromise of the system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in vm2, an open-source virtual machine (VM) sandbox for Node.js. Prior to version 3.11.4, NodeVM, a component of vm2, improperly exposed certain process-wide observability builtins, such as diagnostics_channel, async_hooks, and perf_hooks. These builtins, which are designed for monitoring and debugging, were not adequately blocked by the dangerous builtin denylist. This oversight allowed sandboxed code to observe sensitive host application data, leading to information disclosure across the vm2 security boundary.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in vm2, an open-source virtual machine (VM) sandbox for Node.js. This vulnerability allows an attacker to escape the sandbox environment by writing malicious code. Successful exploitation can lead to arbitrary code execution on the host system, compromising the integrity and confidentiality of the system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in vm2, an open-source virtual machine (VM) sandbox for Node.js. This sandbox escape vulnerability allows an attacker to execute arbitrary code in the host process. This occurs when untrusted code is executed with asynchronous (async) support on runtimes that expose WebAssembly JavaScript Promise Integration (JSPI). Specifically, a JSPI-backed Promise can bypass expected Promise-species hardening, exposing a host-originated rejection object to attacker-controlled logic and breaking the sandbox boundary.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
A flaw was found in ws, an open source WebSocket client and server. A remote attacker can exploit this memory exhaustion vulnerability by sending a high volume of exceptionally small fragments and data chunks. This action forces the affected component to allocate and hold structural wrappers that consume excessive memory. Consequently, this leads to process termination and a denial of service (DoS) for the remote peer.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Developer Hub 1.10.2 has been released.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Developer Hub (RHDH) is Red Hat\u0027s enterprise-grade, self-managed, customizable developer portal based on Backstage.io. RHDH is supported on OpenShift and other major Kubernetes clusters (AKS, EKS, GKE). The core features of RHDH include a single pane of glass, a centralized software catalog, self-service via golden path templates, and Tech Docs. RHDH is extensible by plugins.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:36754",
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-12143",
"url": "https://access.redhat.com/security/cve/CVE-2026-12143"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-12151",
"url": "https://access.redhat.com/security/cve/CVE-2026-12151"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-24781",
"url": "https://access.redhat.com/security/cve/CVE-2026-24781"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-27136",
"url": "https://access.redhat.com/security/cve/CVE-2026-27136"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39820",
"url": "https://access.redhat.com/security/cve/CVE-2026-39820"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42338",
"url": "https://access.redhat.com/security/cve/CVE-2026-42338"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42499",
"url": "https://access.redhat.com/security/cve/CVE-2026-42499"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-44486",
"url": "https://access.redhat.com/security/cve/CVE-2026-44486"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-44487",
"url": "https://access.redhat.com/security/cve/CVE-2026-44487"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-44488",
"url": "https://access.redhat.com/security/cve/CVE-2026-44488"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-44492",
"url": "https://access.redhat.com/security/cve/CVE-2026-44492"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-44494",
"url": "https://access.redhat.com/security/cve/CVE-2026-44494"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-44495",
"url": "https://access.redhat.com/security/cve/CVE-2026-44495"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-44496",
"url": "https://access.redhat.com/security/cve/CVE-2026-44496"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-45736",
"url": "https://access.redhat.com/security/cve/CVE-2026-45736"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-47131",
"url": "https://access.redhat.com/security/cve/CVE-2026-47131"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-47135",
"url": "https://access.redhat.com/security/cve/CVE-2026-47135"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-47137",
"url": "https://access.redhat.com/security/cve/CVE-2026-47137"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-47139",
"url": "https://access.redhat.com/security/cve/CVE-2026-47139"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-47140",
"url": "https://access.redhat.com/security/cve/CVE-2026-47140"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-47141",
"url": "https://access.redhat.com/security/cve/CVE-2026-47141"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-47208",
"url": "https://access.redhat.com/security/cve/CVE-2026-47208"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-47210",
"url": "https://access.redhat.com/security/cve/CVE-2026-47210"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-48779",
"url": "https://access.redhat.com/security/cve/CVE-2026-48779"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-6322",
"url": "https://access.redhat.com/security/cve/CVE-2026-6322"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-6734",
"url": "https://access.redhat.com/security/cve/CVE-2026-6734"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-9277",
"url": "https://access.redhat.com/security/cve/CVE-2026-9277"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-9673",
"url": "https://access.redhat.com/security/cve/CVE-2026-9673"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-9697",
"url": "https://access.redhat.com/security/cve/CVE-2026-9697"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://catalog.redhat.com/search?gs\u0026searchType=containers\u0026q=rhdh",
"url": "https://catalog.redhat.com/search?gs\u0026searchType=containers\u0026q=rhdh"
},
{
"category": "external",
"summary": "https://developers.redhat.com/rhdh/overview",
"url": "https://developers.redhat.com/rhdh/overview"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_developer_hub",
"url": "https://docs.redhat.com/en/documentation/red_hat_developer_hub"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/RHDHBUGS-3286",
"url": "https://issues.redhat.com/browse/RHDHBUGS-3286"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/RHDHBUGS-3288",
"url": "https://issues.redhat.com/browse/RHDHBUGS-3288"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/RHDHBUGS-3290",
"url": "https://issues.redhat.com/browse/RHDHBUGS-3290"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/RHDHBUGS-3291",
"url": "https://issues.redhat.com/browse/RHDHBUGS-3291"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/RHDHBUGS-3293",
"url": "https://issues.redhat.com/browse/RHDHBUGS-3293"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/RHDHBUGS-3398",
"url": "https://issues.redhat.com/browse/RHDHBUGS-3398"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_36754.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Developer Hub 1.10.2 release.",
"tracking": {
"current_release_date": "2026-07-10T17:31:03+00:00",
"generator": {
"date": "2026-07-10T17:31:03+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.2"
}
},
"id": "RHSA-2026:36754",
"initial_release_date": "2026-07-08T13:07:12+00:00",
"revision_history": [
{
"date": "2026-07-08T13:07:12+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-07-08T16:49:00+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-10T17:31:03+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Developer Hub 1.10",
"product": {
"name": "Red Hat Developer Hub 1.10",
"product_id": "Red Hat Developer Hub 1.10",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhdh:1.10::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Developer Hub"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"product": {
"name": "registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"product_id": "registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-hub-rhel9@sha256%3A61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02?arch=amd64\u0026repository_url=registry.redhat.io/rhdh/rhdh-hub-rhel9\u0026tag=1783448184"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"product": {
"name": "registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"product_id": "registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-must-gather-rhel9@sha256%3Aaacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1?arch=amd64\u0026repository_url=registry.redhat.io/rhdh/rhdh-must-gather-rhel9\u0026tag=1783447888"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64",
"product": {
"name": "registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64",
"product_id": "registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-rhel9-operator@sha256%3A0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b?arch=amd64\u0026repository_url=registry.redhat.io/rhdh/rhdh-rhel9-operator\u0026tag=1783447707"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"product": {
"name": "registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"product_id": "registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-operator-bundle@sha256%3Ad4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a?arch=amd64\u0026repository_url=registry.redhat.io/rhdh/rhdh-operator-bundle\u0026tag=1783453583"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"product": {
"name": "registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"product_id": "registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-rag-content-rhel9@sha256%3Abea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65?arch=amd64\u0026repository_url=registry.redhat.io/rhdh/rhdh-rag-content-rhel9\u0026tag=1783446803"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64 as a component of Red Hat Developer Hub 1.10",
"product_id": "Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
},
"product_reference": "registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"relates_to_product_reference": "Red Hat Developer Hub 1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64 as a component of Red Hat Developer Hub 1.10",
"product_id": "Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64"
},
"product_reference": "registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"relates_to_product_reference": "Red Hat Developer Hub 1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64 as a component of Red Hat Developer Hub 1.10",
"product_id": "Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64"
},
"product_reference": "registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"relates_to_product_reference": "Red Hat Developer Hub 1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64 as a component of Red Hat Developer Hub 1.10",
"product_id": "Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64"
},
"product_reference": "registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"relates_to_product_reference": "Red Hat Developer Hub 1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64 as a component of Red Hat Developer Hub 1.10",
"product_id": "Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
},
"product_reference": "registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64",
"relates_to_product_reference": "Red Hat Developer Hub 1.10"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-6322",
"cwe": {
"id": "CWE-140",
"name": "Improper Neutralization of Delimiters"
},
"discovery_date": "2026-05-05T11:01:00.332189+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2466684"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in fast-uri. A remote attacker could exploit this vulnerability by crafting a malicious Uniform Resource Identifier (URI) that contains percent-encoded authority delimiters. The fast-uri library incorrectly decodes these delimiters during normalization and then re-emits them as raw separators, which can change the URI\u0027s intended authority. This issue allows applications that perform host allowlist checks, redirect validation, or outbound request routing to be steered to a different authority than specified, potentially bypassing security controls.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-uri: fast-uri: URI authority bypass due to improper delimiter handling",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important flaw in the `fast-uri` library allows an attacker to bypass security controls in Red Hat products that process Uniform Resource Identifiers (URIs). By crafting a malicious URI with percent-encoded authority delimiters, an attacker can cause the library to incorrectly interpret the URI\u0027s authority, potentially redirecting applications to an unintended domain. This could lead to a bypass of host allowlist checks, redirect validation, or outbound request routing.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-6322"
},
{
"category": "external",
"summary": "RHBZ#2466684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2466684"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-6322",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-6322"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-6322",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-6322"
},
{
"category": "external",
"summary": "https://cna.openjsf.org/security-advisories.html",
"url": "https://cna.openjsf.org/security-advisories.html"
},
{
"category": "external",
"summary": "https://github.com/fastify/fast-uri/security/advisories/GHSA-v39h-62p7-jpjc",
"url": "https://github.com/fastify/fast-uri/security/advisories/GHSA-v39h-62p7-jpjc"
}
],
"release_date": "2026-05-05T10:29:16.378000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "fast-uri: fast-uri: URI authority bypass due to improper delimiter handling"
},
{
"cve": "CVE-2026-6734",
"cwe": {
"id": "CWE-940",
"name": "Improper Verification of Source of a Communication Channel"
},
"discovery_date": "2026-06-17T19:04:00.272340+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2490024"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in undici. When using Socks5ProxyAgent, undici incorrectly reuses a single connection pool across different origins. This can lead to cross-origin request routing, where sensitive credentials and data intended for one destination are sent to another. Consequently, responses from unintended origins may be trusted, and secure HTTPS connections could be silently downgraded to unencrypted HTTP, resulting in information disclosure and data integrity issues.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "undici: undici: Information disclosure and data integrity issues due to incorrect Socks5ProxyAgent connection routing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is rated as an Important security flaw. The `undici` library, when configured with `Socks5ProxyAgent` to handle requests for multiple origins, incorrectly reuses connection pools. This can lead to sensitive data and credentials being misrouted to unintended destinations, potentially downgrading HTTPS connections to HTTP and compromising data integrity and confidentiality. Red Hat products utilizing `undici` with `Socks5ProxyAgent` in multi-origin scenarios are affected.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-6734"
},
{
"category": "external",
"summary": "RHBZ#2490024",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2490024"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-6734",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-6734"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-6734",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-6734"
},
{
"category": "external",
"summary": "https://cna.openjsf.org/security-advisories.html",
"url": "https://cna.openjsf.org/security-advisories.html"
},
{
"category": "external",
"summary": "https://github.com/nodejs/undici/security/advisories/GHSA-hm92-r4w5-c3mj",
"url": "https://github.com/nodejs/undici/security/advisories/GHSA-hm92-r4w5-c3mj"
}
],
"release_date": "2026-06-17T16:36:55.439000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "The single most impactful mitigation is applying network egress controls to restrict which external destinations affected applications can reach. Because the vulnerability causes requests to be misrouted to wrong origins, limiting the set of reachable origins directly reduces the attack surface. These controls collectively limit the blast radius of the connection pool misrouting \u2014 the attacker must compromise one of the explicitly allowed destinations rather than any arbitrary origin \u2014 but they do not fix the underlying logic bug.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "undici: undici: Information disclosure and data integrity issues due to incorrect Socks5ProxyAgent connection routing"
},
{
"cve": "CVE-2026-9277",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"discovery_date": "2026-05-22T14:01:14.427751+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480741"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the shell-quote component. The quote() function did not properly validate object-token inputs, allowing line terminators to pass unescaped into the output. A remote attacker could exploit this vulnerability by providing specially crafted input, which a POSIX shell would interpret as a command separator. This could lead to command injection, enabling the attacker to execute arbitrary code on the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "shell-quote: shell-quote: Arbitrary code execution via command injection due to unescaped line terminators",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-9277"
},
{
"category": "external",
"summary": "RHBZ#2480741",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480741"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-9277",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-9277"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-9277",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-9277"
},
{
"category": "external",
"summary": "https://github.com/ljharb/shell-quote",
"url": "https://github.com/ljharb/shell-quote"
},
{
"category": "external",
"summary": "https://github.com/ljharb/shell-quote/commit/1518179",
"url": "https://github.com/ljharb/shell-quote/commit/1518179"
},
{
"category": "external",
"summary": "https://github.com/ljharb/shell-quote/security/advisories/GHSA-w7jw-789q-3m8p",
"url": "https://github.com/ljharb/shell-quote/security/advisories/GHSA-w7jw-789q-3m8p"
},
{
"category": "external",
"summary": "https://www.npmjs.com/package/shell-quote",
"url": "https://www.npmjs.com/package/shell-quote"
}
],
"release_date": "2026-05-22T13:22:38.873000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "shell-quote: shell-quote: Arbitrary code execution via command injection due to unescaped line terminators"
},
{
"cve": "CVE-2026-9673",
"cwe": {
"id": "CWE-1236",
"name": "Improper Neutralization of Formula Elements in a CSV File"
},
"discovery_date": "2026-05-28T06:01:00.245616+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2482486"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in json-2-csv. An attacker can bypass the `preventCsvInjection` option to inject malicious formulas into CSV (Comma Separated Values) files. When these manipulated CSV files are opened in spreadsheet applications, the injected formulas can execute, potentially leading to arbitrary code execution or information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "json-2-csv: json-2-csv: CSV Injection vulnerability allows arbitrary code execution via `preventCsvInjection` bypass.",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Moderate vulnerability in `json-2-csv` allows for CSV Injection due to a bypass in the `preventCsvInjection` option. While exploitation requires a user to open a specially crafted CSV file in a spreadsheet application, successful attacks could lead to arbitrary code execution or information disclosure. This affects Red Hat Developer Hub and Red Hat Ansible Automation Platform when processing untrusted data that is subsequently exported to CSV and opened by a user.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-9673"
},
{
"category": "external",
"summary": "RHBZ#2482486",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2482486"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-9673",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-9673"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-9673",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-9673"
},
{
"category": "external",
"summary": "https://gist.github.com/whoamins/299745a2d36b482b44e9613b78e40613",
"url": "https://gist.github.com/whoamins/299745a2d36b482b44e9613b78e40613"
},
{
"category": "external",
"summary": "https://github.com/mrodrig/json-2-csv/blob/main/src/json2csv.ts%23L410",
"url": "https://github.com/mrodrig/json-2-csv/blob/main/src/json2csv.ts%23L410"
},
{
"category": "external",
"summary": "https://github.com/mrodrig/json-2-csv/commit/0fdd0bb6d0273178cd940afc323ccbce19688229",
"url": "https://github.com/mrodrig/json-2-csv/commit/0fdd0bb6d0273178cd940afc323ccbce19688229"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-JSON2CSV-14221326",
"url": "https://security.snyk.io/vuln/SNYK-JS-JSON2CSV-14221326"
}
],
"release_date": "2026-05-28T05:00:02.387000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "json-2-csv: json-2-csv: CSV Injection vulnerability allows arbitrary code execution via `preventCsvInjection` bypass."
},
{
"cve": "CVE-2026-9697",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2026-06-17T19:03:30.813843+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2490018"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in undici. When undici\u0027s ProxyAgent is configured with a SOCKS5 proxy Uniform Resource Identifier (URI), it silently ignores Transport Layer Security (TLS) options, such as custom Certificate Authorities (CAs). This allows a remote attacker to perform a Man-in-the-Middle (MITM) attack, intercepting and tampering with HTTPS communications. The connection falls back to Node.js\u0027s default trust store, bypassing intended security configurations and potentially leading to information disclosure or arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "undici: undici: Man-in-the-Middle attack via ignored TLS options with SOCKS5 proxy",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important vulnerability. Applications using `undici`\u0027s `ProxyAgent` with a SOCKS5 proxy URI will silently ignore user-configured TLS options, including custom Certificate Authorities. This bypasses intended security controls for HTTPS communication, enabling a remote attacker to perform Man-in-the-Middle attacks, potentially leading to information disclosure or arbitrary code execution in affected Red Hat products.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-9697"
},
{
"category": "external",
"summary": "RHBZ#2490018",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2490018"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-9697",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-9697"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-9697",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-9697"
},
{
"category": "external",
"summary": "https://cna.openjsf.org/security-advisories.html",
"url": "https://cna.openjsf.org/security-advisories.html"
},
{
"category": "external",
"summary": "https://github.com/nodejs/undici/security/advisories/GHSA-vmh5-mc38-953g",
"url": "https://github.com/nodejs/undici/security/advisories/GHSA-vmh5-mc38-953g"
}
],
"release_date": "2026-06-17T16:46:42.706000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "undici: undici: Man-in-the-Middle attack via ignored TLS options with SOCKS5 proxy"
},
{
"cve": "CVE-2026-12143",
"cwe": {
"id": "CWE-93",
"name": "Improper Neutralization of CRLF Sequences (\u0027CRLF Injection\u0027)"
},
"discovery_date": "2026-06-12T19:00:57.360953+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2488480"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in form-data, a library for creating readable multipart/form-data streams. A remote attacker can exploit this vulnerability by injecting carriage return (CR), line feed (LF), or double-quote (\") characters into the `field` argument of `FormData#append` or the `filename` option. This allows the attacker to inject additional headers or smuggle entire additional multipart parts into requests, potentially enabling them to add or override form fields and compromise data integrity.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "form-data: form-data: Form field override via CRLF injection",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important impact flaw in the form-data library: a remote attacker can inject arbitrary headers or additional multipart parts via CRLF injection in field names or filenames, potentially overriding sensitive form fields and affecting data integrity.\n\nFor RHOAI and RHEL AI, severity is Moderate because affected versions appear only as a transitive npm dependency in RHOAI (dashboard, mod-arch plugins, MLflow UI) and RHEL AI 3.4 bootc images, and those products use fixed field names for uploads rather than passing untrusted user input as multipart field names or filenames. The documented exploit path is therefore not reachable in default deployments. Practical impact is limited to non-default or custom integrations that forward multipart requests using attacker-controlled field names.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-12143"
},
{
"category": "external",
"summary": "RHBZ#2488480",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2488480"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-12143",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-12143"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-12143",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-12143"
},
{
"category": "external",
"summary": "https://cwe.mitre.org/data/definitions/93.html",
"url": "https://cwe.mitre.org/data/definitions/93.html"
},
{
"category": "external",
"summary": "https://github.com/form-data/form-data/commit/64190db548c0179e37206858e39f27cf513e9435",
"url": "https://github.com/form-data/form-data/commit/64190db548c0179e37206858e39f27cf513e9435"
},
{
"category": "external",
"summary": "https://github.com/form-data/form-data/commit/be3f3cf553978bac15a5182f1f3c3d2d38ccf229",
"url": "https://github.com/form-data/form-data/commit/be3f3cf553978bac15a5182f1f3c3d2d38ccf229"
},
{
"category": "external",
"summary": "https://github.com/form-data/form-data/commit/c7133499c2ee1b80c678e411244f4442bf902045",
"url": "https://github.com/form-data/form-data/commit/c7133499c2ee1b80c678e411244f4442bf902045"
},
{
"category": "external",
"summary": "https://github.com/form-data/form-data/security/advisories/GHSA-hmw2-7cc7-3qxx",
"url": "https://github.com/form-data/form-data/security/advisories/GHSA-hmw2-7cc7-3qxx"
},
{
"category": "external",
"summary": "https://html.spec.whatwg.org/multipage/form-control-infrastructure.html#multipart-form-data",
"url": "https://html.spec.whatwg.org/multipage/form-control-infrastructure.html#multipart-form-data"
},
{
"category": "external",
"summary": "https://www.npmjs.com/package/form-data",
"url": "https://www.npmjs.com/package/form-data"
}
],
"release_date": "2026-06-12T18:01:30.362000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Applications using the `form-data` library should implement strict input validation and sanitization for all field names and filenames derived from untrusted sources. This prevents the injection of control characters (CR, LF, \") that could lead to header injection or form field overrides. Deployments that exclusively use fixed or trusted field names are not impacted.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "form-data: form-data: Form field override via CRLF injection"
},
{
"cve": "CVE-2026-12151",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-06-17T17:01:45.297604+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2489980"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in undici. A malicious WebSocket server can exploit this by streaming numerous small or empty continuation frames. This can bypass per-frame and cumulative-size validation, leading to unbounded memory growth in the client process. The primary consequence is memory exhaustion, resulting in a denial of service (DoS) for affected applications using the undici WebSocket client or WebSocketStream API.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "undici: undici: Denial of Service due to unbounded memory growth via WebSocket frames",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important denial of service flaw in the `undici` WebSocket client allows a remote attacker to cause unbounded memory growth. By sending numerous small or empty WebSocket frames, an unauthenticated attacker can exhaust system memory, leading to a denial of service in Red Hat products that use the affected client.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-12151"
},
{
"category": "external",
"summary": "RHBZ#2489980",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2489980"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-12151",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-12151"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-12151",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-12151"
},
{
"category": "external",
"summary": "https://cna.openjsf.org/security-advisories.html",
"url": "https://cna.openjsf.org/security-advisories.html"
},
{
"category": "external",
"summary": "https://github.com/nodejs/undici/security/advisories/GHSA-vxpw-j846-p89q",
"url": "https://github.com/nodejs/undici/security/advisories/GHSA-vxpw-j846-p89q"
}
],
"release_date": "2026-06-17T16:05:38.785000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "undici: undici: Denial of Service due to unbounded memory growth via WebSocket frames"
},
{
"cve": "CVE-2026-24781",
"cwe": {
"id": "CWE-653",
"name": "Improper Isolation or Compartmentalization"
},
"discovery_date": "2026-05-04T19:03:41.437468+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2466531"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in vm2, an open-source virtual machine (VM) sandbox for Node.js. This vulnerability allows an attacker to escape the sandbox environment by exploiting the `inspect` function. Successful exploitation can lead to arbitrary code execution on the host system, compromising the integrity and confidentiality of the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vm2: vm2: Arbitrary code execution via sandbox breakout through inspect function",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-24781"
},
{
"category": "external",
"summary": "RHBZ#2466531",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2466531"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-24781",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-24781"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-24781",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-24781"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/commit/8d30d93213c1898b3e035298b89a814970dd1189",
"url": "https://github.com/patriksimek/vm2/commit/8d30d93213c1898b3e035298b89a814970dd1189"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/commit/bdd3d15e57bc4ec5e70365cd79f7cb0256e5f88c",
"url": "https://github.com/patriksimek/vm2/commit/bdd3d15e57bc4ec5e70365cd79f7cb0256e5f88c"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/commit/fd266d084e0a3322d0f71ba2a8dc4c96cd030228",
"url": "https://github.com/patriksimek/vm2/commit/fd266d084e0a3322d0f71ba2a8dc4c96cd030228"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/releases/tag/v3.11.0",
"url": "https://github.com/patriksimek/vm2/releases/tag/v3.11.0"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/security/advisories/GHSA-v37h-5mfm-c47c",
"url": "https://github.com/patriksimek/vm2/security/advisories/GHSA-v37h-5mfm-c47c"
}
],
"release_date": "2026-05-04T16:33:32.869000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "vm2: vm2: Arbitrary code execution via sandbox breakout through inspect function"
},
{
"cve": "CVE-2026-27136",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2026-05-22T16:00:56.609820+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480757"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/html. When arbitrary HTML is parsed and then rendered, it can result in an unexpected HTML tree. This allows an attacker to bypass HTML sanitization mechanisms, leading to Cross-Site Scripting (XSS) attacks in applications. Such attacks can result in information disclosure or arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/html: golang: golang.org/x/net/html: Cross-Site Scripting via HTML parsing bypass",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in `golang.org/x/net/html` is rated as Important. It allows for Cross-Site Scripting (XSS) attacks by enabling an attacker to bypass HTML sanitization mechanisms when arbitrary HTML is parsed and rendered. This can lead to information disclosure or arbitrary code execution in affected applications. Exploitation typically requires user interaction, where a user processes specially crafted malicious HTML content.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27136"
},
{
"category": "external",
"summary": "RHBZ#2480757",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480757"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27136",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27136"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27136",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27136"
},
{
"category": "external",
"summary": "https://go.dev/cl/781685",
"url": "https://go.dev/cl/781685"
},
{
"category": "external",
"summary": "https://go.dev/issue/79575",
"url": "https://go.dev/issue/79575"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8",
"url": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5030",
"url": "https://pkg.go.dev/vuln/GO-2026-5030"
}
],
"release_date": "2026-05-22T15:01:22.111000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/html: golang: golang.org/x/net/html: Cross-Site Scripting via HTML parsing bypass"
},
{
"cve": "CVE-2026-39820",
"cwe": {
"id": "CWE-606",
"name": "Unchecked Input for Loop Condition"
},
"discovery_date": "2026-05-07T20:01:27.800929+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467820"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `net/mail` package of the Go programming language. An attacker could provide specially crafted inputs to the `ParseAddress`, `ParseAddressList`, or `ParseDate` functions. This could lead to excessive consumption of CPU and memory resources, resulting in a Denial of Service (DoS) for applications processing these inputs.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/mail: golang: Go net/mail: Denial of Service via crafted email inputs",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go `net/mail` package. Applications processing untrusted email inputs via `ParseAddress`, `ParseAddressList`, or `ParseDate` functions are susceptible to excessive resource consumption, which can lead to service unavailability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39820"
},
{
"category": "external",
"summary": "RHBZ#2467820",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467820"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39820",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39820"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39820",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39820"
},
{
"category": "external",
"summary": "https://go.dev/cl/759940",
"url": "https://go.dev/cl/759940"
},
{
"category": "external",
"summary": "https://go.dev/issue/78566",
"url": "https://go.dev/issue/78566"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M",
"url": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4986",
"url": "https://pkg.go.dev/vuln/GO-2026-4986"
}
],
"release_date": "2026-05-07T19:41:19.854000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/mail: golang: Go net/mail: Denial of Service via crafted email inputs"
},
{
"cve": "CVE-2026-42338",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2026-05-12T21:01:14.436876+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2476810"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ip-address, a JavaScript library for parsing and manipulating IPv4 and IPv6 addresses. This vulnerability allows a remote attacker to perform cross-site scripting (XSS) by providing untrusted input to the Address6 constructor. When an application renders the output of Address6.group(), Address6.link(), or the AddressError.parseMessage as HTML without proper escaping, the attacker-controlled content can be executed in the user\u0027s browser.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ip-address: ip-address: Cross-site scripting via improper HTML escaping of untrusted input",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in the `ip-address` JavaScript library is rated as Important. It allows for cross-site scripting (XSS) when an application processes untrusted input through the `Address6` constructor and subsequently renders the unescaped output of methods like `Address6.group()`, `Address6.link()`, or `AddressError.parseMessage` directly as HTML. While the library itself is affected, exploitation is contingent on specific application-level rendering practices that may not be common in Red Hat products.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42338"
},
{
"category": "external",
"summary": "RHBZ#2476810",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2476810"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42338",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42338"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42338",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42338"
},
{
"category": "external",
"summary": "https://github.com/beaugunderson/ip-address/security/advisories/GHSA-v2v4-37r5-5v8g",
"url": "https://github.com/beaugunderson/ip-address/security/advisories/GHSA-v2v4-37r5-5v8g"
}
],
"release_date": "2026-05-12T19:43:16.470000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "ip-address: ip-address: Cross-site scripting via improper HTML escaping of untrusted input"
},
{
"cve": "CVE-2026-42499",
"cwe": {
"id": "CWE-1046",
"name": "Creation of Immutable Text Using String Concatenation"
},
"discovery_date": "2026-05-07T20:00:51.685602+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467809"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `net/mail` package within the Go standard library. A remote attacker could provide specially crafted, pathological email addresses. When these malformed email addresses are parsed by the `consumePhrase` function, it can lead to excessive resource consumption due to quadratic string concatenation, resulting in a Denial of Service (DoS) condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/mail: golang: net/mail: Denial of Service via pathological email address parsing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the `net/mail` package of the Go standard library. A remote attacker can exploit this flaw by sending specially crafted email addresses, leading to excessive resource consumption and a denial of service in Go applications that parse email addresses using the affected library.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42499"
},
{
"category": "external",
"summary": "RHBZ#2467809",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467809"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42499",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42499"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42499",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42499"
},
{
"category": "external",
"summary": "https://go.dev/cl/771520",
"url": "https://go.dev/cl/771520"
},
{
"category": "external",
"summary": "https://go.dev/issue/78987",
"url": "https://go.dev/issue/78987"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M",
"url": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4977",
"url": "https://pkg.go.dev/vuln/GO-2026-4977"
}
],
"release_date": "2026-05-07T19:41:18.615000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/mail: golang: net/mail: Denial of Service via pathological email address parsing"
},
{
"cve": "CVE-2026-44486",
"cwe": {
"id": "CWE-201",
"name": "Insertion of Sensitive Information Into Sent Data"
},
"discovery_date": "2026-06-11T17:01:30.944384+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2487947"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios, a promise-based HTTP client, specifically in its Node.js HTTP adapter. When Axios is configured to use an authenticated proxy and follows a redirect, it may inadvertently send the Proxy-Authorization header, containing proxy credentials, to the redirect target. This can lead to the disclosure of sensitive proxy credentials to an unintended remote server.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Information disclosure of proxy credentials via HTTP redirects",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important information disclosure flaw in the Axios Node.js HTTP adapter. Red Hat products utilizing Axios in a Node.js environment with an authenticated proxy and automatic redirects enabled are susceptible. The vulnerability arises when a request, initially sent through an authenticated proxy, is redirected to a target that no longer uses the proxy, potentially leaking `Proxy-Authorization` headers containing sensitive credentials to an untrusted remote server. This risk is heightened in deployments where applications interact with untrusted HTTP origins.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-44486"
},
{
"category": "external",
"summary": "RHBZ#2487947",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2487947"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-44486",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-44486"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-44486",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44486"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-j5f8-grm9-p9fc",
"url": "https://github.com/axios/axios/security/advisories/GHSA-j5f8-grm9-p9fc"
}
],
"release_date": "2026-06-11T15:39:07.714000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: Information disclosure of proxy credentials via HTTP redirects"
},
{
"cve": "CVE-2026-44487",
"cwe": {
"id": "CWE-201",
"name": "Insertion of Sensitive Information Into Sent Data"
},
"discovery_date": "2026-06-11T17:01:34.091476+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2487948"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios. During specific proxy-to-direct redirect flows in the Node.js HTTP adapter, a remote attacker could exploit this vulnerability. The Proxy-Authorization header, which contains proxy credentials and is intended only for the outbound proxy, may be forwarded to the final redirected origin. This can lead to the disclosure of sensitive proxy credentials to an unintended third party.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Information disclosure of proxy credentials via redirect flows",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important information disclosure flaw in Axios affecting Node.js environments. When an application uses Axios with an authenticated HTTP proxy and follows redirects from an HTTP to a non-proxied HTTPS destination, the Proxy-Authorization header may be inadvertently sent to the final origin server. This could lead to the exposure of sensitive proxy credentials to an unintended third party.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-44487"
},
{
"category": "external",
"summary": "RHBZ#2487948",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2487948"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-44487"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-44487",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44487"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-p92q-9vqr-4j8v",
"url": "https://github.com/axios/axios/security/advisories/GHSA-p92q-9vqr-4j8v"
}
],
"release_date": "2026-06-11T15:38:25.150000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: Information disclosure of proxy credentials via redirect flows"
},
{
"cve": "CVE-2026-44488",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-06-11T17:01:36.836488+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2487949"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios, a promise-based HTTP client. When using the fetch adapter, Axios did not properly enforce configured request and response size limits. This vulnerability allows a remote attacker, through a malicious or compromised server, or by supplying a large data URL, to send or receive oversized data bodies. This can lead to resource exhaustion in server-side applications, resulting in a Denial of Service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Denial of Service due to unenforced request and response size limits",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Important: A denial of service flaw was found in Axios, a JavaScript HTTP client library. This issue arises when applications utilize the `fetch` adapter, as configured request and response size limits are not properly enforced. A remote attacker could exploit this by sending or receiving excessively large data bodies, leading to resource exhaustion and potential denial of service in affected server-side applications.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-44488"
},
{
"category": "external",
"summary": "RHBZ#2487949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2487949"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-44488",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-44488"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-44488",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44488"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-777c-7fjr-54vf",
"url": "https://github.com/axios/axios/security/advisories/GHSA-777c-7fjr-54vf"
}
],
"release_date": "2026-06-11T15:37:38.013000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: Denial of Service due to unenforced request and response size limits"
},
{
"cve": "CVE-2026-44492",
"cwe": {
"id": "CWE-289",
"name": "Authentication Bypass by Alternate Name"
},
"discovery_date": "2026-06-11T17:00:56.761751+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2487938"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios, a promise-based HTTP client. This vulnerability occurs because Axios does not properly normalize IPv4-mapped IPv6 addresses. When a NO_PROXY setting is configured to block direct access to specific IPv4 addresses, an attacker can bypass this restriction by using the IPv4-mapped IPv6 form of the address in a request URL. This allows the request to be routed through the proxy, potentially exposing internal services or sensitive information that should otherwise be inaccessible.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Proxy bypass via IPv4-mapped IPv6 address non-normalization",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important flaw in Axios, a JavaScript HTTP client library, that allows for a proxy bypass. When a `NO_PROXY` environment variable is configured to prevent direct connections to specific IPv4 addresses, an attacker can craft a request URL using the IPv4-mapped IPv6 address format. This bypasses the intended `NO_PROXY` exclusion, routing the request through the configured proxy and potentially exposing internal services or sensitive information, such as cloud instance metadata credentials.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-44492"
},
{
"category": "external",
"summary": "RHBZ#2487938",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2487938"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-44492",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-44492"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-44492",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44492"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-pjwm-pj3p-43mv",
"url": "https://github.com/axios/axios/security/advisories/GHSA-pjwm-pj3p-43mv"
}
],
"release_date": "2026-06-11T15:29:13.890000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: Proxy bypass via IPv4-mapped IPv6 address non-normalization"
},
{
"cve": "CVE-2026-44494",
"cwe": {
"id": "CWE-915",
"name": "Improperly Controlled Modification of Dynamically-Determined Object Attributes"
},
"discovery_date": "2026-06-11T17:01:12.945664+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2487942"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios. This vulnerability, a Prototype Pollution \"Gadget\" attack, allows an attacker to escalate any existing Object.prototype pollution in an application\u0027s dependency tree into a full Man-in-the-Middle (MITM) attack. This enables the attacker to intercept, read, and modify all HTTP traffic, including sensitive authentication credentials. The flaw occurs because the `config.proxy` setting is susceptible to prototype pollution, allowing an attacker to inject a malicious proxy server.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Man-in-the-Middle (MITM) attack via Prototype Pollution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important flaw in the Axios library allows an attacker to escalate existing prototype pollution vulnerabilities within an application\u0027s dependency tree into a full Man-in-the-Middle (MITM) attack. By injecting a malicious proxy configuration into the `Object.prototype`, an attacker can intercept, read, and modify all HTTP traffic, including sensitive authentication credentials, without direct user interaction. This poses a significant risk to data confidentiality and integrity in Red Hat products that utilize the Axios library.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-44494"
},
{
"category": "external",
"summary": "RHBZ#2487942",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2487942"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-44494",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-44494"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-44494",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44494"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-35jp-ww65-95wh",
"url": "https://github.com/axios/axios/security/advisories/GHSA-35jp-ww65-95wh"
}
],
"release_date": "2026-06-11T15:32:03.155000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: Man-in-the-Middle (MITM) attack via Prototype Pollution"
},
{
"cve": "CVE-2026-44495",
"cwe": {
"id": "CWE-915",
"name": "Improperly Controlled Modification of Dynamically-Determined Object Attributes"
},
"discovery_date": "2026-06-11T17:00:53.999811+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2487937"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios, a promise-based HTTP client. This vulnerability involves prototype pollution gadgets in the request configuration processing. If another vulnerability has already polluted the Object.prototype.transformResponse, affected Axios versions may incorrectly interpret this inherited value as part of the request configuration or as an option validator. Axios does not itself create the prototype pollution. Exploitability requires a separate prototype-pollution vulnerability or equivalent attacker control over Object.prototype before Axios creates a request.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Information disclosure due to prototype pollution vulnerability",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important vulnerability in Axios, a promise-based HTTP client, can lead to information disclosure, including credential theft and response hijacking, or denial of service. Exploitation requires a separate prototype pollution vulnerability in the same JavaScript process, allowing an attacker to control `Object.prototype.transformResponse`. Red Hat products using affected Axios versions are at risk if another component introduces such pollution.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-44495"
},
{
"category": "external",
"summary": "RHBZ#2487937",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2487937"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-44495",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-44495"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-44495",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44495"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-3g43-6gmg-66jw",
"url": "https://github.com/axios/axios/security/advisories/GHSA-3g43-6gmg-66jw"
}
],
"release_date": "2026-06-11T15:33:12.433000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: Information disclosure due to prototype pollution vulnerability"
},
{
"cve": "CVE-2026-44496",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2026-06-11T17:01:15.856386+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2487943"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios. A remote attacker, by influencing the XSRF cookie name in a browser environment, could cause the application to construct a regular expression that leads to excessive processing. This can result in a client-side Denial of Service (DoS), where the affected browser tab may freeze, impacting the availability of the application for the user.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Client-side Denial of Service via unescaped regex metacharacters in XSRF cookie name",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important flaw in Axios can lead to a client-side Denial of Service. An attacker capable of influencing the XSRF cookie name within a browser environment could trigger excessive regular expression processing, causing the affected browser tab to freeze and degrade user availability. This issue specifically impacts browser-based applications and does not affect Node.js HTTP adapter usage, React Native, or web workers.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-44496"
},
{
"category": "external",
"summary": "RHBZ#2487943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2487943"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-44496",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-44496"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-44496",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44496"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-hfxv-24rg-xrqf",
"url": "https://github.com/axios/axios/security/advisories/GHSA-hfxv-24rg-xrqf"
}
],
"release_date": "2026-06-11T15:34:28.492000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: Client-side Denial of Service via unescaped regex metacharacters in XSRF cookie name"
},
{
"cve": "CVE-2026-45736",
"cwe": {
"id": "CWE-824",
"name": "Access of Uninitialized Pointer"
},
"discovery_date": "2026-05-15T16:00:55.786944+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2477914"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ws, an open source WebSocket client and server for Node.js. The `websocket.close()` implementation is vulnerable to uninitialized memory disclosure when a `TypedArray` is passed as the reason argument. This can lead to the disclosure of sensitive information from uninitialized memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ws: ws: Uninitialized memory disclosure via `websocket.close()` with `TypedArray`",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important vulnerability in the `ws` WebSocket library for Node.js could lead to sensitive information disclosure. The flaw occurs when a `TypedArray` is specifically provided as the `reason` argument to the `websocket.close()` function, potentially exposing uninitialized memory. Red Hat products utilizing this library may be affected if their implementations allow for such a crafted `close()` call.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-45736"
},
{
"category": "external",
"summary": "RHBZ#2477914",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2477914"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-45736",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-45736"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-45736",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-45736"
},
{
"category": "external",
"summary": "https://github.com/websockets/ws/commit/c0327ec15a54d701eb6ccefaa8bef328cfc03086",
"url": "https://github.com/websockets/ws/commit/c0327ec15a54d701eb6ccefaa8bef328cfc03086"
},
{
"category": "external",
"summary": "https://github.com/websockets/ws/security/advisories/GHSA-58qx-3vcg-4xpx",
"url": "https://github.com/websockets/ws/security/advisories/GHSA-58qx-3vcg-4xpx"
}
],
"release_date": "2026-05-15T14:53:57.263000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "ws: ws: Uninitialized memory disclosure via `websocket.close()` with `TypedArray`"
},
{
"cve": "CVE-2026-47131",
"cwe": {
"id": "CWE-843",
"name": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)"
},
"discovery_date": "2026-06-12T15:01:52.744009+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2488393"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in vm2, an open-source virtual machine (VM) sandbox for Node.js. A remote attacker can exploit this vulnerability by combining specific Buffer function calls and Node.js\u0027s ERR_INVALID_ARG_TYPE error. This allows the attacker to obtain the host\u0027s TypeError constructor, leading to an escape from the sandbox. Consequently, this enables attackers to run arbitrary code on the host system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vm2: vm2: Arbitrary code execution via sandbox escape vulnerability",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has rated the impact of this vulnerability as Moderate in Red Hat Developer Hub and Ansible Automation Platform.The affected package is present in both products as a transitive dependency; however, the vulnerable sandbox functionality is not invoked in any production code path. The active sandboxing mechanism used by both products does not rely on this package, and user-supplied input cannot reach the vulnerable code under a standard deployment. Exploitation would require an attacker to independently route arbitrary JavaScript into the sandbox runtime, a condition not present in the default configuration of either product.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-47131"
},
{
"category": "external",
"summary": "RHBZ#2488393",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2488393"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-47131",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-47131"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-47131",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-47131"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/commit/27c525f4615e2b983f122e2bed327d810126f5c8",
"url": "https://github.com/patriksimek/vm2/commit/27c525f4615e2b983f122e2bed327d810126f5c8"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/releases/tag/v3.11.4",
"url": "https://github.com/patriksimek/vm2/releases/tag/v3.11.4"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/security/advisories/GHSA-v6mx-mf47-r5wg",
"url": "https://github.com/patriksimek/vm2/security/advisories/GHSA-v6mx-mf47-r5wg"
}
],
"release_date": "2026-06-12T14:14:17.037000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vm2: vm2: Arbitrary code execution via sandbox escape vulnerability"
},
{
"cve": "CVE-2026-47135",
"cwe": {
"id": "CWE-1100",
"name": "Insufficient Isolation of System-Dependent Functions"
},
"discovery_date": "2026-06-12T15:02:02.154869+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2488396"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in vm2, an open-source virtual machine (VM) sandbox for Node.js. An attacker within the sandbox could exploit incomplete symbol interception and missing security checks to gain control over the host system. This could allow the attacker to execute arbitrary code outside the sandbox environment, leading to a complete compromise of the host.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vm2: vm2: Sandbox escape allows arbitrary code execution on the host system",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability has been rated as Moderate for Red Hat Developer Hub and Red Hat Ansible Automation Platform. The vm2 sandbox exists as a transitive dependency in Red Hat Developer Hub and is only utilized during build time. The sandbox is therefore not exposed on the production code path. Exploitation of this vulnerability requires attackers to write cross-realm symbol keys to host objects which is not possible in the default configuration of Red Hat Developer Hub.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-47135"
},
{
"category": "external",
"summary": "RHBZ#2488396",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2488396"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-47135",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-47135"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-47135",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-47135"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/commit/928aef51898b5c52a05f05a40c4cfeb52e172878",
"url": "https://github.com/patriksimek/vm2/commit/928aef51898b5c52a05f05a40c4cfeb52e172878"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/releases/tag/v3.11.4",
"url": "https://github.com/patriksimek/vm2/releases/tag/v3.11.4"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/security/advisories/GHSA-m5q2-4fm3-vfqp",
"url": "https://github.com/patriksimek/vm2/security/advisories/GHSA-m5q2-4fm3-vfqp"
}
],
"release_date": "2026-06-12T14:14:42.022000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vm2: vm2: Sandbox escape allows arbitrary code execution on the host system"
},
{
"cve": "CVE-2026-47137",
"cwe": {
"id": "CWE-480",
"name": "Use of Incorrect Operator"
},
"discovery_date": "2026-06-12T15:01:24.611905+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2488385"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in vm2, an open-source virtual machine (VM) sandbox for Node.js. A remote attacker could bypass a security check designed to prevent the combination of nested environments and disabled module loading. This bypass occurs because a strict equality check for the `require` option can be circumvented by simply omitting the option, leading to an unintended configuration. Successful exploitation of this vulnerability could allow an attacker to escape the sandbox and achieve arbitrary code execution on the host system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vm2: vm2: Sandbox escape leading to arbitrary code execution via security bypass",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has rated the impact of this vulnerability as Moderate in Red Hat Developer Hub and Ansible Automation Platform.The affected package is present in both products as a transitive dependency; however, the vulnerable sandbox functionality is not invoked in any production code path. The active sandboxing mechanism used by both products does not rely on this package, and user-supplied input cannot reach the vulnerable code under a standard deployment. Exploitation would require an attacker to independently route arbitrary JavaScript into the sandbox runtime, a condition not present in the default configuration of either product.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-47137"
},
{
"category": "external",
"summary": "RHBZ#2488385",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2488385"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-47137",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-47137"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-47137",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-47137"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-g644-9gfx-q4q4",
"url": "https://github.com/advisories/GHSA-g644-9gfx-q4q4"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/commit/01a7552add345d5a6862623884e6b79a85bf0568",
"url": "https://github.com/patriksimek/vm2/commit/01a7552add345d5a6862623884e6b79a85bf0568"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/commit/86ab819f202c3a8dad88cef5705f2e416c5188d7",
"url": "https://github.com/patriksimek/vm2/commit/86ab819f202c3a8dad88cef5705f2e416c5188d7"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/releases/tag/v3.11.4",
"url": "https://github.com/patriksimek/vm2/releases/tag/v3.11.4"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/security/advisories/GHSA-m4wx-m65x-ghrr",
"url": "https://github.com/patriksimek/vm2/security/advisories/GHSA-m4wx-m65x-ghrr"
}
],
"release_date": "2026-06-12T14:15:34.795000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "vm2: vm2: Sandbox escape leading to arbitrary code execution via security bypass"
},
{
"cve": "CVE-2026-47139",
"cwe": {
"id": "CWE-1100",
"name": "Insufficient Isolation of System-Dependent Functions"
},
"discovery_date": "2026-06-12T15:01:31.104545+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2488387"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in vm2, a Node.js sandbox. This vulnerability allows sandboxed code to bypass network restrictions by utilizing internal HTTP built-ins, such as _http_client and _http_server. An attacker can exploit this to make outbound HTTP requests or open listening HTTP sockets, even when public network modules are explicitly denied. This could lead to unauthorized information disclosure or further compromise of the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vm2: vm2: Sandbox escape via internal HTTP built-ins leading to network restriction bypass",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability has been rated as Moderate for Red Hat Developer Hub and Red Hat Ansible Automation Platform. The vm2 sandbox exists as a transitive dependency in Red Hat Developer Hub and is only utilized during build time. The sandbox is therefore not exposed on the production code path. Exploitation of this vulnerability requires attackers to access internal HTTP built-ins which is not possible in the default configuration of Red Hat Developer Hub.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-47139"
},
{
"category": "external",
"summary": "RHBZ#2488387",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2488387"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-47139",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-47139"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-47139",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-47139"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/commit/436053e30eecbabd487e2fd2959c137ac34e2bb1",
"url": "https://github.com/patriksimek/vm2/commit/436053e30eecbabd487e2fd2959c137ac34e2bb1"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/releases/tag/v3.11.4",
"url": "https://github.com/patriksimek/vm2/releases/tag/v3.11.4"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/security/advisories/GHSA-r9pm-gxmw-wv6p",
"url": "https://github.com/patriksimek/vm2/security/advisories/GHSA-r9pm-gxmw-wv6p"
}
],
"release_date": "2026-06-12T14:15:44.652000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vm2: vm2: Sandbox escape via internal HTTP built-ins leading to network restriction bypass"
},
{
"cve": "CVE-2026-47140",
"cwe": {
"id": "CWE-184",
"name": "Incomplete List of Disallowed Inputs"
},
"discovery_date": "2026-06-12T15:01:11.705175+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2488381"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in vm2, an open-source virtual machine (VM) sandbox for Node.js. This vulnerability allows sandboxed code to bypass intended security restrictions by exploiting missing entries in the denylist for dangerous Node.js built-in functions, specifically `process` and `inspector/promises`. A remote attacker can leverage this to execute arbitrary code in the host process, leading to a complete compromise of the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vm2: vm2: Arbitrary code execution due to incomplete sandbox restrictions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has rated the impact of this vulnerability as Moderate in Red Hat Developer Hub and Ansible Automation Platform.The affected package is present in both products as a transitive dependency; however, the vulnerable sandbox functionality is not invoked in any production code path. The active sandboxing mechanism used by both products does not rely on this package, and user-supplied input cannot reach the vulnerable code under a standard deployment. Exploitation would require an attacker to independently route arbitrary JavaScript into the sandbox runtime, a condition not present in the default configuration of either product.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-47140"
},
{
"category": "external",
"summary": "RHBZ#2488381",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2488381"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-47140",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-47140"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-47140",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-47140"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/commit/a1ed47a98d1cc36cb48c0d566d55889688e0b59b",
"url": "https://github.com/patriksimek/vm2/commit/a1ed47a98d1cc36cb48c0d566d55889688e0b59b"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/releases/tag/v3.11.4",
"url": "https://github.com/patriksimek/vm2/releases/tag/v3.11.4"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/security/advisories/GHSA-rp36-8xq3-r6c4",
"url": "https://github.com/patriksimek/vm2/security/advisories/GHSA-rp36-8xq3-r6c4"
}
],
"release_date": "2026-06-12T14:16:10.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "vm2: vm2: Arbitrary code execution due to incomplete sandbox restrictions"
},
{
"cve": "CVE-2026-47141",
"cwe": {
"id": "CWE-653",
"name": "Improper Isolation or Compartmentalization"
},
"discovery_date": "2026-06-12T15:01:05.444374+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2488379"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in vm2, an open-source virtual machine (VM) sandbox for Node.js. Prior to version 3.11.4, NodeVM, a component of vm2, improperly exposed certain process-wide observability builtins, such as diagnostics_channel, async_hooks, and perf_hooks. These builtins, which are designed for monitoring and debugging, were not adequately blocked by the dangerous builtin denylist. This oversight allowed sandboxed code to observe sensitive host application data, leading to information disclosure across the vm2 security boundary.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vm2: vm2: NodeVM observability builtins leak host process and HTTP request data",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability has been rated as Moderate for Red Hat Developer Hub and Red Hat Ansible Automation Platform. The vm2 sandbox exists as a transitive dependency in Red Hat Developer Hub and is only utilized during build time. The sandbox is therefore not exposed on the production code path. Exploitation of this vulnerability requires attackers to access process-wide observability builtins which is not possible in the default configuration of Red Hat Developer Hub.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-47141"
},
{
"category": "external",
"summary": "RHBZ#2488379",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2488379"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-47141",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-47141"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-47141",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-47141"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/commit/e1c48fce05189f48e71efbd32af0754efa4066bb",
"url": "https://github.com/patriksimek/vm2/commit/e1c48fce05189f48e71efbd32af0754efa4066bb"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/releases/tag/v3.11.4",
"url": "https://github.com/patriksimek/vm2/releases/tag/v3.11.4"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/security/advisories/GHSA-9g8x-92q2-p28f",
"url": "https://github.com/patriksimek/vm2/security/advisories/GHSA-9g8x-92q2-p28f"
}
],
"release_date": "2026-06-12T14:17:35.970000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vm2: vm2: NodeVM observability builtins leak host process and HTTP request data"
},
{
"cve": "CVE-2026-47208",
"discovery_date": "2026-06-12T15:01:14.630546+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2488382"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in vm2, an open-source virtual machine (VM) sandbox for Node.js. This vulnerability allows an attacker to escape the sandbox environment by writing malicious code. Successful exploitation can lead to arbitrary code execution on the host system, compromising the integrity and confidentiality of the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vm2: vm2: Sandbox Breakout Using Promise Species",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Exploitation requires an attacker to supply untrusted malicious code to the vm2 sandbox, which is easily achieved since the component\u0027s main purpose is to execute untrusted code.\n\nEscaping the sandbox completely bypasses the intended security boundaries, leading directly to arbitrary code execution on the host system and a full compromise of confidentiality and integrity",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-47208"
},
{
"category": "external",
"summary": "RHBZ#2488382",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2488382"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-47208",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-47208"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-47208",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-47208"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/commit/a462655009669c3124ee39498121651597529ea8",
"url": "https://github.com/patriksimek/vm2/commit/a462655009669c3124ee39498121651597529ea8"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/releases/tag/v3.11.4",
"url": "https://github.com/patriksimek/vm2/releases/tag/v3.11.4"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/security/advisories/GHSA-76w7-j9cq-rx2j",
"url": "https://github.com/patriksimek/vm2/security/advisories/GHSA-76w7-j9cq-rx2j"
}
],
"release_date": "2026-06-12T14:16:22.726000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vm2: vm2: Sandbox Breakout Using Promise Species"
},
{
"cve": "CVE-2026-47210",
"cwe": {
"id": "CWE-653",
"name": "Improper Isolation or Compartmentalization"
},
"discovery_date": "2026-06-12T15:01:38.846673+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2488389"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in vm2, an open-source virtual machine (VM) sandbox for Node.js. This sandbox escape vulnerability allows an attacker to execute arbitrary code in the host process. This occurs when untrusted code is executed with asynchronous (async) support on runtimes that expose WebAssembly JavaScript Promise Integration (JSPI). Specifically, a JSPI-backed Promise can bypass expected Promise-species hardening, exposing a host-originated rejection object to attacker-controlled logic and breaking the sandbox boundary.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vm2: vm2: Arbitrary code execution via sandbox escape when executing untrusted code with async support.",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has rated the impact of this vulnerability as Moderate in Red Hat Developer Hub and Ansible Automation Platform.The affected package is present in both products as a transitive dependency; however, the vulnerable sandbox functionality is not invoked in any production code path. The active sandboxing mechanism used by both products does not rely on this package, and user-supplied input cannot reach the vulnerable code under a standard deployment. Exploitation would require an attacker to independently route arbitrary JavaScript into the sandbox runtime, a condition not present in the default configuration of either product.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-47210"
},
{
"category": "external",
"summary": "RHBZ#2488389",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2488389"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-47210",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-47210"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-47210",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-47210"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/commit/6915fa4d9bcebd47b9a4f39a1adc1aa94ef6ffc6",
"url": "https://github.com/patriksimek/vm2/commit/6915fa4d9bcebd47b9a4f39a1adc1aa94ef6ffc6"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/releases/tag/v3.11.4",
"url": "https://github.com/patriksimek/vm2/releases/tag/v3.11.4"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/security/advisories/GHSA-6j2x-vhqr-qr7q",
"url": "https://github.com/patriksimek/vm2/security/advisories/GHSA-6j2x-vhqr-qr7q"
}
],
"release_date": "2026-06-12T14:17:22.653000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vm2: vm2: Arbitrary code execution via sandbox escape when executing untrusted code with async support."
},
{
"cve": "CVE-2026-48779",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2026-06-16T22:01:24.571224+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2489661"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ws, an open source WebSocket client and server. A remote attacker can exploit this memory exhaustion vulnerability by sending a high volume of exceptionally small fragments and data chunks. This action forces the affected component to allocate and hold structural wrappers that consume excessive memory. Consequently, this leads to process termination and a denial of service (DoS) for the remote peer.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ws: ws: Denial of Service via memory exhaustion from small WebSocket fragments",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the `ws` WebSocket library. A remote attacker can exploit this flaw by sending a high volume of small, fragmented data, leading to excessive memory consumption and subsequent process termination. This can result in service disruption for Red Hat products that utilize `ws` for WebSocket communication.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-48779"
},
{
"category": "external",
"summary": "RHBZ#2489661",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2489661"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-48779",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-48779"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-48779",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-48779"
},
{
"category": "external",
"summary": "https://github.com/websockets/ws/commit/86d3e8a5fb0246ed373860c5fbb0de88824a27f7",
"url": "https://github.com/websockets/ws/commit/86d3e8a5fb0246ed373860c5fbb0de88824a27f7"
},
{
"category": "external",
"summary": "https://github.com/websockets/ws/commit/b5372ac67bb97a773727b8e9f5035a8123556d53",
"url": "https://github.com/websockets/ws/commit/b5372ac67bb97a773727b8e9f5035a8123556d53"
},
{
"category": "external",
"summary": "https://github.com/websockets/ws/commit/bca91adf15677e47dbe4f959653452727be28b94",
"url": "https://github.com/websockets/ws/commit/bca91adf15677e47dbe4f959653452727be28b94"
},
{
"category": "external",
"summary": "https://github.com/websockets/ws/commit/fd36cd864fcdf62a08273a99e19a7d975401fee8",
"url": "https://github.com/websockets/ws/commit/fd36cd864fcdf62a08273a99e19a7d975401fee8"
},
{
"category": "external",
"summary": "https://github.com/websockets/ws/security/advisories/GHSA-96hv-2xvq-fx4p",
"url": "https://github.com/websockets/ws/security/advisories/GHSA-96hv-2xvq-fx4p"
}
],
"release_date": "2026-06-16T21:26:22.537000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T13:07:12+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36754"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:61883f5228095e3a3fd5b7daf60e29a5ffd053844f8661a2b5282a77c086dc02_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-must-gather-rhel9@sha256:aacbef97f59305a91db44c3c92c34509027b3d2a4ece07716e6fe8b217dd5ee1_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:d4208a03e389fe82e7da2d27c491251e6d43a0b473aa80d3e6a351c77582a92a_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rag-content-rhel9@sha256:bea9305c453e377dfe6abf20076aec408efe2cbcf05f5a1c04c9b2d2f288bd65_amd64",
"Red Hat Developer Hub 1.10:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:0856143fa78dbbd74c1c068c75c265451698913608009f40600bb7c46928739b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "ws: ws: Denial of Service via memory exhaustion from small WebSocket fragments"
}
]
}
RHSA-2026:36797
Vulnerability from csaf_redhat - Published: 2026-07-08 15:46 - Updated: 2026-07-10 19:40A flaw was found in the `crypto/x509` package of `golang`. This vulnerability allows a remote attacker to cause a Denial of Service (DoS) by presenting a specially crafted X.509 certificate with a large number of DNS Subject Alternative Name (SAN) entries. The certificate verification process, specifically the `VerifyHostname` function, incurs excessive computational overhead due to repeated string operations when processing these entries. This can lead to a significant performance degradation or unresponsiveness of systems validating such certificates.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
A flaw was found in the `net` package of Go (golang), specifically when using the `LookupCNAME` function with the `cgo` DNS resolver. A remote attacker could exploit this by providing a very long Canonical Name (CNAME) response. This can trigger a double-free of C memory, leading to a crash and a Denial of Service (DoS) for the affected application.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
A flaw was found in the `net/mail` package of the Go programming language. An attacker could provide specially crafted inputs to the `ParseAddress`, `ParseAddressList`, or `ParseDate` functions. This could lead to excessive consumption of CPU and memory resources, resulting in a Denial of Service (DoS) for applications processing these inputs.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname (for example, xn--example-.com returns example.com instead of an error). Applications that validate the ASCII form then convert to Unicode may grant access to a restricted hostname the ASCII check would have rejected.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. A remote attacker could exploit this vulnerability when an SSH server authentication callback returned a PartialSuccessError with non-nil permissions. This flaw caused these permissions to be silently discarded, potentially bypassing certificate restrictions, such as a force-command, after a second authentication factor succeeded. This could lead to unauthorized command execution or access.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. The RSA and DSA public key parsers in the affected component did not enforce size limits on key parameters. This vulnerability allows an unauthenticated client to provide a crafted public key with an excessively large modulus or DSA parameter during public key authentication. Successful exploitation could lead to a denial of service (DoS) due to prolonged CPU consumption during signature verification.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. A remote malicious SSH peer can exploit this by sending unsolicited global request responses, which fills an internal buffer and blocks the connection's read loop. This prevents the associated resources from being released, leading to a resource leak per connection. The consequence is a Denial of Service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh/agent. When a key was added to a remote agent, security restrictions, known as constraint extensions, were not properly processed during the request. This allowed these restrictions to be silently removed when keys were forwarded, leading to the unrestricted use of the key on the remote host. This vulnerability could enable an attacker to bypass intended security controls and perform unauthorized actions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh/agent. The NewKeyring() function, which creates an in-memory keyring, failed to enforce the ConfirmBeforeUse constraint on keys. This allowed keys configured to require user confirmation before use to perform signing operations without any prompt or indication to the user. Consequently, an attacker could potentially bypass intended security controls, leading to unauthorized cryptographic signing actions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. SSH servers configured to use CertChecker as a public key callback, without explicitly setting IsUserAuthority or IsHostAuthority, are vulnerable. A remote attacker can exploit this by presenting a specially crafted certificate, causing the server to panic and resulting in a Denial of Service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
A flaw was found in Prometheus, an open-source monitoring system. The `client_secret` field within the Azure Active Directory (AD) remote write OAuth configuration was incorrectly handled as a plain string instead of a secure Secret type. This misconfiguration allowed any user or process with access to the `/-/config` HTTP API endpoint to view the Azure OAuth client secret in plaintext. This vulnerability leads to information disclosure, potentially compromising the security of integrated Azure AD services.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
A flaw was found in the `net/mail` package within the Go standard library. A remote attacker could provide specially crafted, pathological email addresses. When these malformed email addresses are parsed by the `consumePhrase` function, it can lead to excessive resource consumption due to quadratic string concatenation, resulting in a Denial of Service (DoS) condition.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh/knownhosts. This vulnerability occurs because the system did not correctly check for the revocation status of a SignatureKey belonging to a Certificate Authority (CA). A remote attacker could potentially exploit this by presenting a revoked key, leading to the system accepting it as valid. This could allow an attacker to bypass security checks and potentially gain unauthorized access or spoof legitimate entities.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
A flaw was found in golang.org/x/crypto/ssh. Source-address validation can be skipped when an SSH server configuration uses an authentication callback type other than public key, allowing authorization bypass in misconfigured servers. This is a follow-on to incomplete coverage from the CVE-2024-45337 fix.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "The 1.4.2 release of the RHTAS CLIs.\nFor more details please visit the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4",
"title": "Topic"
},
{
"category": "general",
"text": "The RHTAS CLI Stack images for RHTAS 1.4.2",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:36797",
"url": "https://access.redhat.com/errata/RHSA-2026:36797"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4",
"url": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"url": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-27145",
"url": "https://access.redhat.com/security/cve/CVE-2026-27145"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33811",
"url": "https://access.redhat.com/security/cve/CVE-2026-33811"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39820",
"url": "https://access.redhat.com/security/cve/CVE-2026-39820"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39821",
"url": "https://access.redhat.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39828",
"url": "https://access.redhat.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39829",
"url": "https://access.redhat.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39830",
"url": "https://access.redhat.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39832",
"url": "https://access.redhat.com/security/cve/CVE-2026-39832"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39833",
"url": "https://access.redhat.com/security/cve/CVE-2026-39833"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39835",
"url": "https://access.redhat.com/security/cve/CVE-2026-39835"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42151",
"url": "https://access.redhat.com/security/cve/CVE-2026-42151"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42499",
"url": "https://access.redhat.com/security/cve/CVE-2026-42499"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42508",
"url": "https://access.redhat.com/security/cve/CVE-2026-42508"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-46595",
"url": "https://access.redhat.com/security/cve/CVE-2026-46595"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_36797.json"
}
],
"title": "Red Hat Security Advisory: RHTAS 1.4.2 - CLI Stack Release",
"tracking": {
"current_release_date": "2026-07-10T19:40:47+00:00",
"generator": {
"date": "2026-07-10T19:40:47+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.2"
}
},
"id": "RHSA-2026:36797",
"initial_release_date": "2026-07-08T15:46:32+00:00",
"revision_history": [
{
"date": "2026-07-08T15:46:32+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-07-08T15:46:42+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-10T19:40:47+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Trusted Artifact Signer 1.4",
"product": {
"name": "Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:trusted_artifact_signer:1.4::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Trusted Artifact Signer"
},
{
"branches": [
{
"category": "product_version",
"name": "conforma-cli-stack-v1-4@amd64_darwin",
"product": {
"name": "conforma-cli-stack-v1-4@amd64_darwin",
"product_id": "conforma-cli-stack-v1-4@amd64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/conforma-cli-stack-v1-4@1.4.2?filename=ec_darwin_amd64.tar.gz\u0026checksum=sha256:0344b4e6a24947a5d5bb150114c457c99c7c1f4b987b7325c599103b2620f0b1\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "cosign-cli-stack-v1-4@amd64_darwin",
"product": {
"name": "cosign-cli-stack-v1-4@amd64_darwin",
"product_id": "cosign-cli-stack-v1-4@amd64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/cosign-cli-stack-v1-4@1.4.2?filename=cosign_darwin_amd64.tar.gz\u0026checksum=sha256:8eea0dd7273667cb6a00783550f90598569988533d1df3e9ead97062f52c3ad0\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"product": {
"name": "fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"product_id": "fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/fetch-tsa-certs-cli-stack-v1-4@1.4.2?filename=fetch_tsa_certs_darwin_amd64.tar.gz\u0026checksum=sha256:cc3daa1b5f8a0154f2ede5fec3c9d9755f6f8bafd44aac6801f61d3788b0a852\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "gitsign-cli-stack-v1-4@amd64_darwin",
"product": {
"name": "gitsign-cli-stack-v1-4@amd64_darwin",
"product_id": "gitsign-cli-stack-v1-4@amd64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/gitsign-cli-stack-v1-4@1.4.2?filename=gitsign_cli_darwin_amd64.tar.gz\u0026checksum=sha256:40a44daf09563a272b303a57306fce013945da9e9267da5c0095ba30fe1ac954\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "model-transparency-cli-stack-v1-4@amd64_darwin",
"product": {
"name": "model-transparency-cli-stack-v1-4@amd64_darwin",
"product_id": "model-transparency-cli-stack-v1-4@amd64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/model-transparency-cli-stack-v1-4@1.4.2?filename=model_transparency_cli_darwin_amd64.tar.gz\u0026checksum=sha256:9d8083d8956c3a5b6af761879ae66699f09be16b5a2d46d0829f0369e722bbc3\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "rekor-cli-stack-v1-4@amd64_darwin",
"product": {
"name": "rekor-cli-stack-v1-4@amd64_darwin",
"product_id": "rekor-cli-stack-v1-4@amd64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/rekor-cli-stack-v1-4@1.4.2?filename=rekor_cli_darwin_amd64.tar.gz\u0026checksum=sha256:d026b169014317d85fc71bef3ca52fdf421b57248479413097853e47118de188\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "trillian-cli-stack-v1-4@amd64_darwin",
"product": {
"name": "trillian-cli-stack-v1-4@amd64_darwin",
"product_id": "trillian-cli-stack-v1-4@amd64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/trillian-cli-stack-v1-4@1.4.2?filename=updatetree_darwin_amd64.tar.gz\u0026checksum=sha256:d11811c053131069d6a7937f2ee81aacf29aa5e0dc0e4fc2c21fcf219b4c1384\u0026download_url=https://developers.qa.redhat.com/products"
}
}
}
],
"category": "architecture",
"name": "amd64_darwin"
},
{
"branches": [
{
"category": "product_version",
"name": "conforma-cli-stack-v1-4@arm64_darwin",
"product": {
"name": "conforma-cli-stack-v1-4@arm64_darwin",
"product_id": "conforma-cli-stack-v1-4@arm64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/conforma-cli-stack-v1-4@1.4.2?filename=ec_darwin_arm64.tar.gz\u0026checksum=sha256:f15eb4c22d7a540a06aa2042fe689924606fa28c9c20a8d645619f4e3de5a449\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "cosign-cli-stack-v1-4@arm64_darwin",
"product": {
"name": "cosign-cli-stack-v1-4@arm64_darwin",
"product_id": "cosign-cli-stack-v1-4@arm64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/cosign-cli-stack-v1-4@1.4.2?filename=cosign_darwin_arm64.tar.gz\u0026checksum=sha256:32a80cab00f2e3b94dd7614e19ba09d5a94f22c10939ca4ca06fc461e6c4b4ec\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"product": {
"name": "fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"product_id": "fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/fetch-tsa-certs-cli-stack-v1-4@1.4.2?filename=fetch_tsa_certs_darwin_arm64.tar.gz\u0026checksum=sha256:1e3c1789230f060f1225182f7f6caec445f7c04f6d9d29078151338654352f5b\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "gitsign-cli-stack-v1-4@arm64_darwin",
"product": {
"name": "gitsign-cli-stack-v1-4@arm64_darwin",
"product_id": "gitsign-cli-stack-v1-4@arm64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/gitsign-cli-stack-v1-4@1.4.2?filename=gitsign_cli_darwin_arm64.tar.gz\u0026checksum=sha256:024e50fa4e9349e0468680ac94e281daefbcda7acc4a14db61052a242ace37a7\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "model-transparency-cli-stack-v1-4@arm64_darwin",
"product": {
"name": "model-transparency-cli-stack-v1-4@arm64_darwin",
"product_id": "model-transparency-cli-stack-v1-4@arm64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/model-transparency-cli-stack-v1-4@1.4.2?filename=model_transparency_cli_darwin_arm64.tar.gz\u0026checksum=sha256:7b86c47c8564a533fb2a5194306857aa9c2b8fca16f8de9a8e242fa58ce3b700\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "rekor-cli-stack-v1-4@arm64_darwin",
"product": {
"name": "rekor-cli-stack-v1-4@arm64_darwin",
"product_id": "rekor-cli-stack-v1-4@arm64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/rekor-cli-stack-v1-4@1.4.2?filename=rekor_cli_darwin_arm64.tar.gz\u0026checksum=sha256:7fd467b7fe65bb4294db426efc9bf264bee8e7773341abac7a8503905464e029\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "trillian-cli-stack-v1-4@arm64_darwin",
"product": {
"name": "trillian-cli-stack-v1-4@arm64_darwin",
"product_id": "trillian-cli-stack-v1-4@arm64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/trillian-cli-stack-v1-4@1.4.2?filename=updatetree_darwin_arm64.tar.gz\u0026checksum=sha256:9a6e31af8de1aecbc209eb371c70cb8a40fa13ac076200c717ef32c52fdf1c32\u0026download_url=https://developers.qa.redhat.com/products"
}
}
}
],
"category": "architecture",
"name": "arm64_darwin"
},
{
"branches": [
{
"category": "product_version",
"name": "conforma-cli-stack-v1-4@amd64",
"product": {
"name": "conforma-cli-stack-v1-4@amd64",
"product_id": "conforma-cli-stack-v1-4@amd64",
"product_identification_helper": {
"purl": "pkg:generic/conforma-cli-stack-v1-4@1.4.2?filename=ec_linux_amd64.tar.gz\u0026checksum=sha256:1ff31ed89331b18828e430c5b8ab74f6af01ce6767796d630b5f3a9b17b28dc6\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "cosign-cli-stack-v1-4@amd64",
"product": {
"name": "cosign-cli-stack-v1-4@amd64",
"product_id": "cosign-cli-stack-v1-4@amd64",
"product_identification_helper": {
"purl": "pkg:generic/cosign-cli-stack-v1-4@1.4.2?filename=cosign_linux_amd64.tar.gz\u0026checksum=sha256:6b31c7f26dc20a7903ee0ff5fddf9b28f445d25caa4d6cf789ceaa5ca70ce112\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "fetch-tsa-certs-cli-stack-v1-4@amd64",
"product": {
"name": "fetch-tsa-certs-cli-stack-v1-4@amd64",
"product_id": "fetch-tsa-certs-cli-stack-v1-4@amd64",
"product_identification_helper": {
"purl": "pkg:generic/fetch-tsa-certs-cli-stack-v1-4@1.4.2?filename=fetch_tsa_certs_linux_amd64.tar.gz\u0026checksum=sha256:93720b9c3c48d7f94e885f9250bde724b9ea9f99e9b5c6263746c9d5b94be04e\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "gitsign-cli-stack-v1-4@amd64",
"product": {
"name": "gitsign-cli-stack-v1-4@amd64",
"product_id": "gitsign-cli-stack-v1-4@amd64",
"product_identification_helper": {
"purl": "pkg:generic/gitsign-cli-stack-v1-4@1.4.2?filename=gitsign_cli_linux_amd64.tar.gz\u0026checksum=sha256:e51c54d5cf34895b8f7c3b391ba7070aac61a557f84f50fb223597412da03414\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "model-transparency-cli-stack-v1-4@amd64",
"product": {
"name": "model-transparency-cli-stack-v1-4@amd64",
"product_id": "model-transparency-cli-stack-v1-4@amd64",
"product_identification_helper": {
"purl": "pkg:generic/model-transparency-cli-stack-v1-4@1.4.2?filename=model_transparency_cli_pkcs11_linux_amd64.tar.gz\u0026checksum=sha256:cd613b774b604748640e3b70519fbef26f47740e9e615f1806ff168c6be5d423\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "rekor-cli-stack-v1-4@amd64",
"product": {
"name": "rekor-cli-stack-v1-4@amd64",
"product_id": "rekor-cli-stack-v1-4@amd64",
"product_identification_helper": {
"purl": "pkg:generic/rekor-cli-stack-v1-4@1.4.2?filename=rekor_cli_linux_amd64.tar.gz\u0026checksum=sha256:2b1bebaca059a78c9c6c15941f1a03960cd515bf76fe61dc325b5487c0bf5839\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "trillian-cli-stack-v1-4@amd64",
"product": {
"name": "trillian-cli-stack-v1-4@amd64",
"product_id": "trillian-cli-stack-v1-4@amd64",
"product_identification_helper": {
"purl": "pkg:generic/trillian-cli-stack-v1-4@1.4.2?filename=updatetree_linux_amd64.tar.gz\u0026checksum=sha256:a9e25e8e3287e4c49d2d5c8d594fd8997c14e9d5f12c19ebe7d2a4be3a367186\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "tuftool-cli-stack-v1-4@amd64",
"product": {
"name": "tuftool-cli-stack-v1-4@amd64",
"product_id": "tuftool-cli-stack-v1-4@amd64",
"product_identification_helper": {
"purl": "pkg:generic/tuftool-cli-stack-v1-4@1.4.2?filename=tuftool_linux_amd64.tar.gz\u0026checksum=sha256:3a83ac0e1ba4cf6827ff5b38f5f44c94427ef85beb860325e6ccd116a0b60dce\u0026download_url=https://developers.qa.redhat.com/products"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "conforma-cli-stack-v1-4@arm64",
"product": {
"name": "conforma-cli-stack-v1-4@arm64",
"product_id": "conforma-cli-stack-v1-4@arm64",
"product_identification_helper": {
"purl": "pkg:generic/conforma-cli-stack-v1-4@1.4.2?filename=ec_linux_arm64.tar.gz\u0026checksum=sha256:e37f9344035bed820ae772b9f94c1bbc9e3ae8c394f29ceea57e390fd286031d\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "cosign-cli-stack-v1-4@arm64",
"product": {
"name": "cosign-cli-stack-v1-4@arm64",
"product_id": "cosign-cli-stack-v1-4@arm64",
"product_identification_helper": {
"purl": "pkg:generic/cosign-cli-stack-v1-4@1.4.2?filename=cosign_linux_arm64.tar.gz\u0026checksum=sha256:5038ef7ea154bd08e7625ec77014acbd7cdd1139bcd174242d39064a8b97320c\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "fetch-tsa-certs-cli-stack-v1-4@arm64",
"product": {
"name": "fetch-tsa-certs-cli-stack-v1-4@arm64",
"product_id": "fetch-tsa-certs-cli-stack-v1-4@arm64",
"product_identification_helper": {
"purl": "pkg:generic/fetch-tsa-certs-cli-stack-v1-4@1.4.2?filename=fetch_tsa_certs_linux_arm64.tar.gz\u0026checksum=sha256:88f469ea1387b26654726e60b9a34cd078cabbc50b45fdbdc3197b83faec324e\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "gitsign-cli-stack-v1-4@arm64",
"product": {
"name": "gitsign-cli-stack-v1-4@arm64",
"product_id": "gitsign-cli-stack-v1-4@arm64",
"product_identification_helper": {
"purl": "pkg:generic/gitsign-cli-stack-v1-4@1.4.2?filename=gitsign_cli_linux_arm64.tar.gz\u0026checksum=sha256:5bfe15a942a73fec6864df3a2acf02b34947b25aeb022094f9dbc6f32a173af2\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "model-transparency-cli-stack-v1-4@arm64",
"product": {
"name": "model-transparency-cli-stack-v1-4@arm64",
"product_id": "model-transparency-cli-stack-v1-4@arm64",
"product_identification_helper": {
"purl": "pkg:generic/model-transparency-cli-stack-v1-4@1.4.2?filename=model_transparency_cli_pkcs11_linux_arm64.tar.gz\u0026checksum=sha256:4067226e5e8708b1304349d996d5d004d9f827f8baa64e32759bbb25e5d9e883\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "rekor-cli-stack-v1-4@arm64",
"product": {
"name": "rekor-cli-stack-v1-4@arm64",
"product_id": "rekor-cli-stack-v1-4@arm64",
"product_identification_helper": {
"purl": "pkg:generic/rekor-cli-stack-v1-4@1.4.2?filename=rekor_cli_linux_arm64.tar.gz\u0026checksum=sha256:5129a9e3adeecb6e1d1ec0346e8bf38f5b19281009b92b45a157b211bc39b809\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "trillian-cli-stack-v1-4@arm64",
"product": {
"name": "trillian-cli-stack-v1-4@arm64",
"product_id": "trillian-cli-stack-v1-4@arm64",
"product_identification_helper": {
"purl": "pkg:generic/trillian-cli-stack-v1-4@1.4.2?filename=updatetree_linux_arm64.tar.gz\u0026checksum=sha256:2b094f8dbb25de8d4484065c9f3ee819a97fb67fd4d72088256ca0478f8821a7\u0026download_url=https://developers.qa.redhat.com/products"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "conforma-cli-stack-v1-4@ppc64le",
"product": {
"name": "conforma-cli-stack-v1-4@ppc64le",
"product_id": "conforma-cli-stack-v1-4@ppc64le",
"product_identification_helper": {
"purl": "pkg:generic/conforma-cli-stack-v1-4@1.4.2?filename=ec_linux_ppc64le.tar.gz\u0026checksum=sha256:2f5cbaabac374a8b61295858bfe984191a881970ebe17be83c3ba35c329fe13a\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "cosign-cli-stack-v1-4@ppc64le",
"product": {
"name": "cosign-cli-stack-v1-4@ppc64le",
"product_id": "cosign-cli-stack-v1-4@ppc64le",
"product_identification_helper": {
"purl": "pkg:generic/cosign-cli-stack-v1-4@1.4.2?filename=cosign_linux_ppc64le.tar.gz\u0026checksum=sha256:f3a5b8bd3928810ff4cd3469bd1b2c02c5310c0e9407477ac6ba38ce3b09fbb4\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"product": {
"name": "fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"product_id": "fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"product_identification_helper": {
"purl": "pkg:generic/fetch-tsa-certs-cli-stack-v1-4@1.4.2?filename=fetch_tsa_certs_linux_ppc64le.tar.gz\u0026checksum=sha256:25f972648cb2323dba8f825580d6b2de1e88db333c6ed78ad9832a094ea5dcad\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "gitsign-cli-stack-v1-4@ppc64le",
"product": {
"name": "gitsign-cli-stack-v1-4@ppc64le",
"product_id": "gitsign-cli-stack-v1-4@ppc64le",
"product_identification_helper": {
"purl": "pkg:generic/gitsign-cli-stack-v1-4@1.4.2?filename=gitsign_cli_linux_ppc64le.tar.gz\u0026checksum=sha256:99ed9ec270447d3b009e0ecf57e71620f39868e8b56d9c9be0bf239e5f07bf39\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "model-transparency-cli-stack-v1-4@ppc64le",
"product": {
"name": "model-transparency-cli-stack-v1-4@ppc64le",
"product_id": "model-transparency-cli-stack-v1-4@ppc64le",
"product_identification_helper": {
"purl": "pkg:generic/model-transparency-cli-stack-v1-4@1.4.2?filename=model_transparency_cli_pkcs11_linux_ppc64le.tar.gz\u0026checksum=sha256:9157f1e0a3f483f544c5a8b5d72886f422d1e8111ec75131adf6ee5f6146f1f7\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "rekor-cli-stack-v1-4@ppc64le",
"product": {
"name": "rekor-cli-stack-v1-4@ppc64le",
"product_id": "rekor-cli-stack-v1-4@ppc64le",
"product_identification_helper": {
"purl": "pkg:generic/rekor-cli-stack-v1-4@1.4.2?filename=rekor_cli_linux_ppc64le.tar.gz\u0026checksum=sha256:75d28c4e81f7496b0a927a44e0fce9a766e95a8e383126ac5feb432ec501cc54\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "trillian-cli-stack-v1-4@ppc64le",
"product": {
"name": "trillian-cli-stack-v1-4@ppc64le",
"product_id": "trillian-cli-stack-v1-4@ppc64le",
"product_identification_helper": {
"purl": "pkg:generic/trillian-cli-stack-v1-4@1.4.2?filename=updatetree_linux_ppc64le.tar.gz\u0026checksum=sha256:d90e1c644c394300a3e8234a945ee1d70e09ae8c37eb7aee5a3683017c864cbc\u0026download_url=https://developers.qa.redhat.com/products"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "conforma-cli-stack-v1-4@s390x",
"product": {
"name": "conforma-cli-stack-v1-4@s390x",
"product_id": "conforma-cli-stack-v1-4@s390x",
"product_identification_helper": {
"purl": "pkg:generic/conforma-cli-stack-v1-4@1.4.2?filename=ec_linux_s390x.tar.gz\u0026checksum=sha256:ae497f4c2974c0022303a3e1815605ca5e3115d17707b9f75238e3b739fa301a\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "cosign-cli-stack-v1-4@s390x",
"product": {
"name": "cosign-cli-stack-v1-4@s390x",
"product_id": "cosign-cli-stack-v1-4@s390x",
"product_identification_helper": {
"purl": "pkg:generic/cosign-cli-stack-v1-4@1.4.2?filename=cosign_linux_s390x.tar.gz\u0026checksum=sha256:ce8878b50b0c0d3a3828635e4b1045f0bb5f6deeafc1be8fb8ee9cfd2b65fc9d\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "fetch-tsa-certs-cli-stack-v1-4@s390x",
"product": {
"name": "fetch-tsa-certs-cli-stack-v1-4@s390x",
"product_id": "fetch-tsa-certs-cli-stack-v1-4@s390x",
"product_identification_helper": {
"purl": "pkg:generic/fetch-tsa-certs-cli-stack-v1-4@1.4.2?filename=fetch_tsa_certs_linux_s390x.tar.gz\u0026checksum=sha256:f73ce30aa019d116998479b58b4cafc03b3fbca16cc47101ea3e78845146f917\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "gitsign-cli-stack-v1-4@s390x",
"product": {
"name": "gitsign-cli-stack-v1-4@s390x",
"product_id": "gitsign-cli-stack-v1-4@s390x",
"product_identification_helper": {
"purl": "pkg:generic/gitsign-cli-stack-v1-4@1.4.2?filename=gitsign_cli_linux_s390x.tar.gz\u0026checksum=sha256:bac01104b8e4c112f0dd82af9d8a4f3ca78bbfefb4f88713eac5875bbff1b28a\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "model-transparency-cli-stack-v1-4@s390x",
"product": {
"name": "model-transparency-cli-stack-v1-4@s390x",
"product_id": "model-transparency-cli-stack-v1-4@s390x",
"product_identification_helper": {
"purl": "pkg:generic/model-transparency-cli-stack-v1-4@1.4.2?filename=model_transparency_cli_pkcs11_linux_s390x.tar.gz\u0026checksum=sha256:1bd24d59d4cebf682f6780da1bbd21e53cebf5f1ac7acfcac360a37a3c06c10c\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "rekor-cli-stack-v1-4@s390x",
"product": {
"name": "rekor-cli-stack-v1-4@s390x",
"product_id": "rekor-cli-stack-v1-4@s390x",
"product_identification_helper": {
"purl": "pkg:generic/rekor-cli-stack-v1-4@1.4.2?filename=rekor_cli_linux_s390x.tar.gz\u0026checksum=sha256:7e8de71d98a483e9fd07e1c79425bd7b3909bf1ebfa2ded9663c835819f280d2\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "trillian-cli-stack-v1-4@s390x",
"product": {
"name": "trillian-cli-stack-v1-4@s390x",
"product_id": "trillian-cli-stack-v1-4@s390x",
"product_identification_helper": {
"purl": "pkg:generic/trillian-cli-stack-v1-4@1.4.2?filename=updatetree_linux_s390x.tar.gz\u0026checksum=sha256:994a0886ef2ce20919b9422a72a900e85e76817874076fb4981c00dacc73837f\u0026download_url=https://developers.qa.redhat.com/products"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "conforma-cli-stack-v1-4@amd64_windows",
"product": {
"name": "conforma-cli-stack-v1-4@amd64_windows",
"product_id": "conforma-cli-stack-v1-4@amd64_windows",
"product_identification_helper": {
"purl": "pkg:generic/conforma-cli-stack-v1-4@1.4.2?filename=ec_windows_amd64.zip\u0026checksum=sha256:08c6c5625f35891f5d902aa8e96e8081f7b8f6c331298faf124d657fe389afe1\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "cosign-cli-stack-v1-4@amd64_windows",
"product": {
"name": "cosign-cli-stack-v1-4@amd64_windows",
"product_id": "cosign-cli-stack-v1-4@amd64_windows",
"product_identification_helper": {
"purl": "pkg:generic/cosign-cli-stack-v1-4@1.4.2?filename=cosign_windows_amd64.zip\u0026checksum=sha256:6238651a35a50a6c45014f03d744c593a4d81a7b2bfc124204cd13616ff8388c\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"product": {
"name": "fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"product_id": "fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"product_identification_helper": {
"purl": "pkg:generic/fetch-tsa-certs-cli-stack-v1-4@1.4.2?filename=fetch_tsa_certs_windows_amd64.zip\u0026checksum=sha256:56491ee25bb1a67b612246bf5d4c57021d8545a3031ca010f9ccc9fc6136d2ed\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "gitsign-cli-stack-v1-4@amd64_windows",
"product": {
"name": "gitsign-cli-stack-v1-4@amd64_windows",
"product_id": "gitsign-cli-stack-v1-4@amd64_windows",
"product_identification_helper": {
"purl": "pkg:generic/gitsign-cli-stack-v1-4@1.4.2?filename=gitsign_cli_windows_amd64.zip\u0026checksum=sha256:a5760ac48ebeed01a3d3391eaa6cd91e7e2cb2854f317c07446b4599772997ff\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "model-transparency-cli-stack-v1-4@amd64_windows",
"product": {
"name": "model-transparency-cli-stack-v1-4@amd64_windows",
"product_id": "model-transparency-cli-stack-v1-4@amd64_windows",
"product_identification_helper": {
"purl": "pkg:generic/model-transparency-cli-stack-v1-4@1.4.2?filename=model_transparency_cli_windows_amd64.exe.gz\u0026checksum=sha256:ea9d1ce76fb5c7a8b2d1b6c91157a3b2c9cf021c80bcff773342e7bd7b2bdc90\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "rekor-cli-stack-v1-4@amd64_windows",
"product": {
"name": "rekor-cli-stack-v1-4@amd64_windows",
"product_id": "rekor-cli-stack-v1-4@amd64_windows",
"product_identification_helper": {
"purl": "pkg:generic/rekor-cli-stack-v1-4@1.4.2?filename=rekor_cli_windows_amd64.zip\u0026checksum=sha256:31f0e4ddf6b49ab3c8c6513a1b947ea850b8250287e0a60ac6f6abbbf0c622d9\u0026download_url=https://developers.qa.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "trillian-cli-stack-v1-4@amd64_windows",
"product": {
"name": "trillian-cli-stack-v1-4@amd64_windows",
"product_id": "trillian-cli-stack-v1-4@amd64_windows",
"product_identification_helper": {
"purl": "pkg:generic/trillian-cli-stack-v1-4@1.4.2?filename=updatetree_windows_amd64.zip\u0026checksum=sha256:98bbdfa1f5625480ecd4b2bb2e8d90e1314449b03dfd2f67feaad316cdb7a82e\u0026download_url=https://developers.qa.redhat.com/products"
}
}
}
],
"category": "architecture",
"name": "amd64_windows"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "conforma-cli-stack-v1-4@amd64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64"
},
"product_reference": "conforma-cli-stack-v1-4@amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "conforma-cli-stack-v1-4@amd64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin"
},
"product_reference": "conforma-cli-stack-v1-4@amd64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "conforma-cli-stack-v1-4@amd64_windows as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows"
},
"product_reference": "conforma-cli-stack-v1-4@amd64_windows",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "conforma-cli-stack-v1-4@arm64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64"
},
"product_reference": "conforma-cli-stack-v1-4@arm64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "conforma-cli-stack-v1-4@arm64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin"
},
"product_reference": "conforma-cli-stack-v1-4@arm64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "conforma-cli-stack-v1-4@ppc64le as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le"
},
"product_reference": "conforma-cli-stack-v1-4@ppc64le",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "conforma-cli-stack-v1-4@s390x as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
},
"product_reference": "conforma-cli-stack-v1-4@s390x",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-cli-stack-v1-4@amd64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64"
},
"product_reference": "cosign-cli-stack-v1-4@amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-cli-stack-v1-4@amd64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin"
},
"product_reference": "cosign-cli-stack-v1-4@amd64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-cli-stack-v1-4@amd64_windows as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows"
},
"product_reference": "cosign-cli-stack-v1-4@amd64_windows",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-cli-stack-v1-4@arm64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64"
},
"product_reference": "cosign-cli-stack-v1-4@arm64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-cli-stack-v1-4@arm64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin"
},
"product_reference": "cosign-cli-stack-v1-4@arm64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-cli-stack-v1-4@ppc64le as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le"
},
"product_reference": "cosign-cli-stack-v1-4@ppc64le",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-cli-stack-v1-4@s390x as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x"
},
"product_reference": "cosign-cli-stack-v1-4@s390x",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fetch-tsa-certs-cli-stack-v1-4@amd64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64"
},
"product_reference": "fetch-tsa-certs-cli-stack-v1-4@amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fetch-tsa-certs-cli-stack-v1-4@amd64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin"
},
"product_reference": "fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fetch-tsa-certs-cli-stack-v1-4@amd64_windows as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows"
},
"product_reference": "fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fetch-tsa-certs-cli-stack-v1-4@arm64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64"
},
"product_reference": "fetch-tsa-certs-cli-stack-v1-4@arm64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fetch-tsa-certs-cli-stack-v1-4@arm64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin"
},
"product_reference": "fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fetch-tsa-certs-cli-stack-v1-4@ppc64le as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le"
},
"product_reference": "fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fetch-tsa-certs-cli-stack-v1-4@s390x as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x"
},
"product_reference": "fetch-tsa-certs-cli-stack-v1-4@s390x",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitsign-cli-stack-v1-4@amd64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64"
},
"product_reference": "gitsign-cli-stack-v1-4@amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitsign-cli-stack-v1-4@amd64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin"
},
"product_reference": "gitsign-cli-stack-v1-4@amd64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitsign-cli-stack-v1-4@amd64_windows as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows"
},
"product_reference": "gitsign-cli-stack-v1-4@amd64_windows",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitsign-cli-stack-v1-4@arm64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64"
},
"product_reference": "gitsign-cli-stack-v1-4@arm64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitsign-cli-stack-v1-4@arm64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin"
},
"product_reference": "gitsign-cli-stack-v1-4@arm64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitsign-cli-stack-v1-4@ppc64le as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le"
},
"product_reference": "gitsign-cli-stack-v1-4@ppc64le",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitsign-cli-stack-v1-4@s390x as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x"
},
"product_reference": "gitsign-cli-stack-v1-4@s390x",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "model-transparency-cli-stack-v1-4@amd64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64"
},
"product_reference": "model-transparency-cli-stack-v1-4@amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "model-transparency-cli-stack-v1-4@amd64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin"
},
"product_reference": "model-transparency-cli-stack-v1-4@amd64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "model-transparency-cli-stack-v1-4@amd64_windows as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows"
},
"product_reference": "model-transparency-cli-stack-v1-4@amd64_windows",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "model-transparency-cli-stack-v1-4@arm64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64"
},
"product_reference": "model-transparency-cli-stack-v1-4@arm64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "model-transparency-cli-stack-v1-4@arm64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin"
},
"product_reference": "model-transparency-cli-stack-v1-4@arm64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "model-transparency-cli-stack-v1-4@ppc64le as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le"
},
"product_reference": "model-transparency-cli-stack-v1-4@ppc64le",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "model-transparency-cli-stack-v1-4@s390x as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x"
},
"product_reference": "model-transparency-cli-stack-v1-4@s390x",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rekor-cli-stack-v1-4@amd64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64"
},
"product_reference": "rekor-cli-stack-v1-4@amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rekor-cli-stack-v1-4@amd64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin"
},
"product_reference": "rekor-cli-stack-v1-4@amd64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rekor-cli-stack-v1-4@amd64_windows as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows"
},
"product_reference": "rekor-cli-stack-v1-4@amd64_windows",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rekor-cli-stack-v1-4@arm64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64"
},
"product_reference": "rekor-cli-stack-v1-4@arm64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rekor-cli-stack-v1-4@arm64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin"
},
"product_reference": "rekor-cli-stack-v1-4@arm64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rekor-cli-stack-v1-4@ppc64le as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le"
},
"product_reference": "rekor-cli-stack-v1-4@ppc64le",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rekor-cli-stack-v1-4@s390x as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x"
},
"product_reference": "rekor-cli-stack-v1-4@s390x",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "trillian-cli-stack-v1-4@amd64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64"
},
"product_reference": "trillian-cli-stack-v1-4@amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "trillian-cli-stack-v1-4@amd64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin"
},
"product_reference": "trillian-cli-stack-v1-4@amd64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "trillian-cli-stack-v1-4@amd64_windows as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows"
},
"product_reference": "trillian-cli-stack-v1-4@amd64_windows",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "trillian-cli-stack-v1-4@arm64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64"
},
"product_reference": "trillian-cli-stack-v1-4@arm64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "trillian-cli-stack-v1-4@arm64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin"
},
"product_reference": "trillian-cli-stack-v1-4@arm64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "trillian-cli-stack-v1-4@ppc64le as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le"
},
"product_reference": "trillian-cli-stack-v1-4@ppc64le",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "trillian-cli-stack-v1-4@s390x as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x"
},
"product_reference": "trillian-cli-stack-v1-4@s390x",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuftool-cli-stack-v1-4@amd64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
},
"product_reference": "tuftool-cli-stack-v1-4@amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-27145",
"cwe": {
"id": "CWE-606",
"name": "Unchecked Input for Loop Condition"
},
"discovery_date": "2026-06-02T23:01:08.992540+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2484207"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `crypto/x509` package of `golang`. This vulnerability allows a remote attacker to cause a Denial of Service (DoS) by presenting a specially crafted X.509 certificate with a large number of DNS Subject Alternative Name (SAN) entries. The certificate verification process, specifically the `VerifyHostname` function, incurs excessive computational overhead due to repeated string operations when processing these entries. This can lead to a significant performance degradation or unresponsiveness of systems validating such certificates.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: golang crypto/x509: Denial of Service via excessive processing of DNS SAN entries",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "A flaw was found in the Go standard library crypto/x509 package. When verifying a TLS certificate hostname, VerifyHostname processed each DNS Subject Alternative Name (SAN) entry in a loop and repeatedly split the candidate hostname on \".\" characters. For certificates with a very large DNS SAN list, CPU use could grow quadratically with the number of SAN entries and hostname labels. Because hostname verification runs before the certificate chain is built, this overhead can occur even when the certificate is not trusted.\n\nRed Hat rates this issue as Important. It affects Red Hat products that include the Go standard library crypto/x509 code from an affected Go toolchain version (before Go 1.25.11, or from Go 1.26.0 through Go 1.26.3). Applications and container images built with a fixed Go release (1.25.11 or later, or 1.26.4 or later) are not affected. Community distributions such as Fedora are also affected.\n\nUpstream fix: Go 1.25.11 and Go 1.26.4 (GO-2026-5037).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27145"
},
{
"category": "external",
"summary": "RHBZ#2484207",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2484207"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27145",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27145"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27145",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27145"
},
{
"category": "external",
"summary": "https://go.dev/cl/783621",
"url": "https://go.dev/cl/783621"
},
{
"category": "external",
"summary": "https://go.dev/issue/79694",
"url": "https://go.dev/issue/79694"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/tKs3rmcBcKw",
"url": "https://groups.google.com/g/golang-announce/c/tKs3rmcBcKw"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5037",
"url": "https://pkg.go.dev/vuln/GO-2026-5037"
}
],
"release_date": "2026-06-02T22:01:36.954000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:46:32+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36797"
},
{
"category": "workaround",
"details": "A flaw was found in the Go standard library crypto/x509 package. When verifying a TLS certificate hostname, VerifyHostname processed each DNS Subject Alternative Name (SAN) entry in a loop and repeatedly split the candidate hostname on \".\" characters. For certificates with a very large DNS SAN list, CPU use could grow quadratically with the number of SAN entries and hostname labels. Because hostname verification runs before the certificate chain is built, this overhead can occur even when the certificate is not trusted.\n\nRed Hat rates this issue as Important. It affects Red Hat products that include the Go standard library crypto/x509 code from an affected Go toolchain version (before Go 1.25.11, or from Go 1.26.0 through Go 1.26.3). Applications and container images built with a fixed Go release (1.25.11 or later, or 1.26.4 or later) are not affected. Community distributions such as Fedora are also affected.\n\nUpstream fix: Go 1.25.11 and Go 1.26.4 (GO-2026-5037).",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: golang crypto/x509: Denial of Service via excessive processing of DNS SAN entries"
},
{
"cve": "CVE-2026-33811",
"cwe": {
"id": "CWE-1341",
"name": "Multiple Releases of Same Resource or Handle"
},
"discovery_date": "2026-05-07T20:01:34.913869+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467822"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `net` package of Go (golang), specifically when using the `LookupCNAME` function with the `cgo` DNS resolver. A remote attacker could exploit this by providing a very long Canonical Name (CNAME) response. This can trigger a double-free of C memory, leading to a crash and a Denial of Service (DoS) for the affected application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go `net` package, affecting applications configured to use the `cgo` DNS resolver. A remote attacker could trigger a double-free memory error by providing a very long CNAME response, leading to a crash of the vulnerable application and impacting service availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33811"
},
{
"category": "external",
"summary": "RHBZ#2467822",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467822"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33811",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33811"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33811",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33811"
},
{
"category": "external",
"summary": "https://go.dev/cl/767860",
"url": "https://go.dev/cl/767860"
},
{
"category": "external",
"summary": "https://go.dev/issue/78803",
"url": "https://go.dev/issue/78803"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M",
"url": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4981",
"url": "https://pkg.go.dev/vuln/GO-2026-4981"
}
],
"release_date": "2026-05-07T19:41:19.285000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:46:32+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36797"
},
{
"category": "workaround",
"details": "To mitigate this issue, applications can be configured to use the pure Go DNS resolver instead of the `cgo` DNS resolver. This can be achieved by setting the `GODEBUG` environment variable to `netdns=go`. For example, to run a Go application with this mitigation: `GODEBUG=netdns=go /path/to/your/go/application`. This change may require restarting affected applications or services to take effect. Users should verify that this change does not negatively impact DNS resolution for their specific application environment.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME"
},
{
"cve": "CVE-2026-39820",
"cwe": {
"id": "CWE-606",
"name": "Unchecked Input for Loop Condition"
},
"discovery_date": "2026-05-07T20:01:27.800929+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467820"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `net/mail` package of the Go programming language. An attacker could provide specially crafted inputs to the `ParseAddress`, `ParseAddressList`, or `ParseDate` functions. This could lead to excessive consumption of CPU and memory resources, resulting in a Denial of Service (DoS) for applications processing these inputs.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/mail: golang: Go net/mail: Denial of Service via crafted email inputs",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go `net/mail` package. Applications processing untrusted email inputs via `ParseAddress`, `ParseAddressList`, or `ParseDate` functions are susceptible to excessive resource consumption, which can lead to service unavailability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39820"
},
{
"category": "external",
"summary": "RHBZ#2467820",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467820"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39820",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39820"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39820",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39820"
},
{
"category": "external",
"summary": "https://go.dev/cl/759940",
"url": "https://go.dev/cl/759940"
},
{
"category": "external",
"summary": "https://go.dev/issue/78566",
"url": "https://go.dev/issue/78566"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M",
"url": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4986",
"url": "https://pkg.go.dev/vuln/GO-2026-4986"
}
],
"release_date": "2026-05-07T19:41:19.854000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:46:32+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36797"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/mail: golang: Go net/mail: Denial of Service via crafted email inputs"
},
{
"cve": "CVE-2026-39821",
"cwe": {
"id": "CWE-1289",
"name": "Improper Validation of Unsafe Equivalence in Input"
},
"discovery_date": "2026-05-22T16:00:52.844126+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480756"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname (for example, xn--example-.com returns example.com instead of an error). Applications that validate the ASCII form then convert to Unicode may grant access to a restricted hostname the ASCII check would have rejected.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "golang.org/x/net/idna is vulnerable to privilege escalation through incorrect Punycode label handling in ToASCII and ToUnicode. An attacker who can supply a Punycode hostname that passes an ASCII-only authorization check may have it normalized to a restricted ASCII name the application intended to block. Red Hat exposure is broad across products shipping the Go toolchain or bundling golang.org/x/net, including RHEL and RHEL-AI golang RPMs, hummingbird Go runtimes, OpenShift and ODF container builds, and Ceph/OpenShift components compiled against affected x/net versions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "RHBZ#2480756",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480756"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39821",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39821"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39821",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39821"
},
{
"category": "external",
"summary": "https://go.dev/cl/767220",
"url": "https://go.dev/cl/767220"
},
{
"category": "external",
"summary": "https://go.dev/issue/78760",
"url": "https://go.dev/issue/78760"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8",
"url": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5026",
"url": "https://pkg.go.dev/vuln/GO-2026-5026"
}
],
"release_date": "2026-05-22T15:01:21.462000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:46:32+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36797"
},
{
"category": "workaround",
"details": "Upgrade to a fixed golang.org/x/net release that includes the idna correction, via updated golang or dependent package rebuilds.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing"
},
{
"cve": "CVE-2026-39828",
"cwe": {
"id": "CWE-281",
"name": "Improper Preservation of Permissions"
},
"discovery_date": "2026-05-22T04:01:46.775641+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480687"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. A remote attacker could exploit this vulnerability when an SSH server authentication callback returned a PartialSuccessError with non-nil permissions. This flaw caused these permissions to be silently discarded, potentially bypassing certificate restrictions, such as a force-command, after a second authentication factor succeeded. This could lead to unauthorized command execution or access.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important security flaw in the `golang.org/x/crypto/ssh` library. When an SSH server utilizing this library is configured with specific authentication callbacks that return a `PartialSuccessError` with non-nil permissions, an attacker could bypass intended certificate restrictions, such as `force-command`. This bypass could lead to unauthorized command execution or access on affected Red Hat systems configured with multi-factor authentication and certificate-based access controls.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "RHBZ#2480687",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480687"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39828",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39828"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39828",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39828"
},
{
"category": "external",
"summary": "https://go.dev/cl/781621",
"url": "https://go.dev/cl/781621"
},
{
"category": "external",
"summary": "https://go.dev/issue/79562",
"url": "https://go.dev/issue/79562"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5014",
"url": "https://pkg.go.dev/vuln/GO-2026-5014"
}
],
"release_date": "2026-05-22T02:31:26.883000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:46:32+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36797"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions"
},
{
"cve": "CVE-2026-39829",
"cwe": {
"id": "CWE-1284",
"name": "Improper Validation of Specified Quantity in Input"
},
"discovery_date": "2026-05-22T04:01:30.092249+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480681"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. The RSA and DSA public key parsers in the affected component did not enforce size limits on key parameters. This vulnerability allows an unauthenticated client to provide a crafted public key with an excessively large modulus or DSA parameter during public key authentication. Successful exploitation could lead to a denial of service (DoS) due to prolonged CPU consumption during signature verification.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in golang.org/x/crypto/ssh is rated as Important. An unauthenticated remote attacker could trigger a denial of service by providing a specially crafted public key with excessively large parameters during SSH public key authentication. This could lead to prolonged CPU consumption on the server, impacting service availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "RHBZ#2480681",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480681"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39829",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39829"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39829",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39829"
},
{
"category": "external",
"summary": "https://go.dev/cl/781641",
"url": "https://go.dev/cl/781641"
},
{
"category": "external",
"summary": "https://go.dev/cl/781661",
"url": "https://go.dev/cl/781661"
},
{
"category": "external",
"summary": "https://go.dev/issue/79565",
"url": "https://go.dev/issue/79565"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5018",
"url": "https://pkg.go.dev/vuln/GO-2026-5018"
}
],
"release_date": "2026-05-22T02:31:27.324000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:46:32+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36797"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters"
},
{
"cve": "CVE-2026-39830",
"cwe": {
"id": "CWE-772",
"name": "Missing Release of Resource after Effective Lifetime"
},
"discovery_date": "2026-05-22T04:01:38.517202+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480684"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. A remote malicious SSH peer can exploit this by sending unsolicited global request responses, which fills an internal buffer and blocks the connection\u0027s read loop. This prevents the associated resources from being released, leading to a resource leak per connection. The consequence is a Denial of Service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service flaw in `golang.org/x/crypto/ssh`. A remote, unauthenticated attacker can exploit this vulnerability by sending unsolicited global request responses to an affected SSH server, leading to resource exhaustion and a denial of service. The impact is considered Important due to the potential for unauthenticated remote disruption of services utilizing the vulnerable SSH library.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "RHBZ#2480684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480684"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39830",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39830"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39830",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39830"
},
{
"category": "external",
"summary": "https://go.dev/cl/781640",
"url": "https://go.dev/cl/781640"
},
{
"category": "external",
"summary": "https://go.dev/cl/781664",
"url": "https://go.dev/cl/781664"
},
{
"category": "external",
"summary": "https://go.dev/issue/79564",
"url": "https://go.dev/issue/79564"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5017",
"url": "https://pkg.go.dev/vuln/GO-2026-5017"
}
],
"release_date": "2026-05-22T02:31:27.208000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:46:32+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36797"
},
{
"category": "workaround",
"details": "To mitigate this denial of service vulnerability, restrict network access to any service that utilizes the `golang.org/x/crypto/ssh` library and is exposed to untrusted networks. Implement firewall rules to allow connections only from trusted hosts or networks. This action limits the ability of malicious peers to send unsolicited global request responses. A restart of the affected service may be necessary for the new network rules to be applied effectively.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses"
},
{
"cve": "CVE-2026-39832",
"cwe": {
"id": "CWE-281",
"name": "Improper Preservation of Permissions"
},
"discovery_date": "2026-05-22T04:01:41.402561+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480685"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh/agent. When a key was added to a remote agent, security restrictions, known as constraint extensions, were not properly processed during the request. This allowed these restrictions to be silently removed when keys were forwarded, leading to the unrestricted use of the key on the remote host. This vulnerability could enable an attacker to bypass intended security controls and perform unauthorized actions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to improper handling of key restrictions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important vulnerability in `golang.org/x/crypto/ssh/agent` allows for a security bypass when SSH keys with destination restrictions are forwarded via an SSH agent. This flaw could lead to unintended exposure of SSH keys, enabling an attacker to use the forwarded key without the specified restrictions on remote hosts. Red Hat products utilizing `golang.org/x/crypto/ssh/agent` for key forwarding may be affected if users rely on constraint extensions for limiting key usage.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39832"
},
{
"category": "external",
"summary": "RHBZ#2480685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480685"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39832",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39832"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39832",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39832"
},
{
"category": "external",
"summary": "https://go.dev/cl/778642",
"url": "https://go.dev/cl/778642"
},
{
"category": "external",
"summary": "https://go.dev/issue/79435",
"url": "https://go.dev/issue/79435"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5006",
"url": "https://pkg.go.dev/vuln/GO-2026-5006"
}
],
"release_date": "2026-05-22T02:31:26.660000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:46:32+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36797"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to improper handling of key restrictions"
},
{
"cve": "CVE-2026-39833",
"cwe": {
"id": "CWE-358",
"name": "Improperly Implemented Security Check for Standard"
},
"discovery_date": "2026-05-22T04:01:35.714593+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480683"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh/agent. The NewKeyring() function, which creates an in-memory keyring, failed to enforce the ConfirmBeforeUse constraint on keys. This allowed keys configured to require user confirmation before use to perform signing operations without any prompt or indication to the user. Consequently, an attacker could potentially bypass intended security controls, leading to unauthorized cryptographic signing actions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to unenforced key confirmation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat rates this issue as Moderate with RH CVSS 5.5 (CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N). A flaw was found in golang.org/x/crypto/ssh/agent where the in-memory keyring returned by NewKeyring() silently accepted SSH agent keys with the ConfirmBeforeUse constraint but did not enforce interactive confirmation before signing. Exploitation requires local access and low privileges on a system where an affected application uses NewKeyring() with ConfirmBeforeUse. Most Red Hat products that bundle golang.org/x/crypto do not use the ssh/agent ConfirmBeforeUse feature in their supported execution paths. The upstream CISA CVSS 9.1 assumes a broader network attack context that does not reflect Red Hat product deployment.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39833"
},
{
"category": "external",
"summary": "RHBZ#2480683",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480683"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39833",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39833"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39833",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39833"
},
{
"category": "external",
"summary": "https://go.dev/cl/778640",
"url": "https://go.dev/cl/778640"
},
{
"category": "external",
"summary": "https://go.dev/cl/778641",
"url": "https://go.dev/cl/778641"
},
{
"category": "external",
"summary": "https://go.dev/issue/79436",
"url": "https://go.dev/issue/79436"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5005",
"url": "https://pkg.go.dev/vuln/GO-2026-5005"
}
],
"release_date": "2026-05-22T02:31:26.294000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:46:32+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36797"
},
{
"category": "workaround",
"details": "Update affected Go applications to use golang.org/x/crypto version 0.52.0 or later, which rejects unsupported ConfirmBeforeUse keys instead of silently ignoring the constraint. As a workaround, do not add keys with ConfirmBeforeUse to the in-memory keyring from golang.org/x/crypto/ssh/agent, or use an SSH agent implementation that correctly enforces confirm-before-use.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to unenforced key confirmation"
},
{
"cve": "CVE-2026-39835",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2026-05-22T04:01:27.279943+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480680"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. SSH servers configured to use CertChecker as a public key callback, without explicitly setting IsUserAuthority or IsHostAuthority, are vulnerable. A remote attacker can exploit this by presenting a specially crafted certificate, causing the server to panic and resulting in a Denial of Service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang: golang.org/x/crypto/ssh: Denial of Service via crafted SSH certificate",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service flaw in `golang.org/x/crypto/ssh` affecting SSH servers that utilize `CertChecker` as a public key callback without explicitly configuring `IsUserAuthority` or `IsHostAuthority`. A remote, unauthenticated attacker can trigger a server panic by presenting a specially crafted certificate, leading to service disruption. Exploitation requires a specific, non-default configuration of the `CertChecker`.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39835"
},
{
"category": "external",
"summary": "RHBZ#2480680",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480680"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39835",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39835"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39835",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39835"
},
{
"category": "external",
"summary": "https://go.dev/cl/781660",
"url": "https://go.dev/cl/781660"
},
{
"category": "external",
"summary": "https://go.dev/issue/79563",
"url": "https://go.dev/issue/79563"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5015",
"url": "https://pkg.go.dev/vuln/GO-2026-5015"
}
],
"release_date": "2026-05-22T02:31:26.982000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:46:32+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36797"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang: golang.org/x/crypto/ssh: Denial of Service via crafted SSH certificate"
},
{
"cve": "CVE-2026-42151",
"cwe": {
"id": "CWE-256",
"name": "Plaintext Storage of a Password"
},
"discovery_date": "2026-05-04T19:02:26.983660+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2466507"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Prometheus, an open-source monitoring system. The `client_secret` field within the Azure Active Directory (AD) remote write OAuth configuration was incorrectly handled as a plain string instead of a secure Secret type. This misconfiguration allowed any user or process with access to the `/-/config` HTTP API endpoint to view the Azure OAuth client secret in plaintext. This vulnerability leads to information disclosure, potentially compromising the security of integrated Azure AD services.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/prometheus/prometheus: Prometheus: Information disclosure of Azure OAuth client secret via config API",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important information disclosure flaw in Prometheus affects instances configured to use Azure AD remote write with OAuth authentication. The client secret, intended to be a secure credential, is exposed in plaintext through the `/-/config` HTTP API endpoint. This could allow an attacker with access to this endpoint to retrieve the secret, potentially compromising integrated Azure AD services.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42151"
},
{
"category": "external",
"summary": "RHBZ#2466507",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2466507"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42151",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42151"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42151",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42151"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/pull/18587",
"url": "https://github.com/prometheus/prometheus/pull/18587"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/pull/18590",
"url": "https://github.com/prometheus/prometheus/pull/18590"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/releases/tag/v3.11.3",
"url": "https://github.com/prometheus/prometheus/releases/tag/v3.11.3"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/releases/tag/v3.5.3",
"url": "https://github.com/prometheus/prometheus/releases/tag/v3.5.3"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/security/advisories/GHSA-wg65-39gg-5wfj",
"url": "https://github.com/prometheus/prometheus/security/advisories/GHSA-wg65-39gg-5wfj"
}
],
"release_date": "2026-05-04T18:12:16.917000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:46:32+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36797"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/prometheus/prometheus: Prometheus: Information disclosure of Azure OAuth client secret via config API"
},
{
"cve": "CVE-2026-42499",
"cwe": {
"id": "CWE-1046",
"name": "Creation of Immutable Text Using String Concatenation"
},
"discovery_date": "2026-05-07T20:00:51.685602+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467809"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `net/mail` package within the Go standard library. A remote attacker could provide specially crafted, pathological email addresses. When these malformed email addresses are parsed by the `consumePhrase` function, it can lead to excessive resource consumption due to quadratic string concatenation, resulting in a Denial of Service (DoS) condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/mail: golang: net/mail: Denial of Service via pathological email address parsing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the `net/mail` package of the Go standard library. A remote attacker can exploit this flaw by sending specially crafted email addresses, leading to excessive resource consumption and a denial of service in Go applications that parse email addresses using the affected library.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42499"
},
{
"category": "external",
"summary": "RHBZ#2467809",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467809"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42499",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42499"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42499",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42499"
},
{
"category": "external",
"summary": "https://go.dev/cl/771520",
"url": "https://go.dev/cl/771520"
},
{
"category": "external",
"summary": "https://go.dev/issue/78987",
"url": "https://go.dev/issue/78987"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M",
"url": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4977",
"url": "https://pkg.go.dev/vuln/GO-2026-4977"
}
],
"release_date": "2026-05-07T19:41:18.615000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:46:32+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36797"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/mail: golang: net/mail: Denial of Service via pathological email address parsing"
},
{
"cve": "CVE-2026-42508",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2026-05-22T04:01:49.515058+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480688"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh/knownhosts. This vulnerability occurs because the system did not correctly check for the revocation status of a SignatureKey belonging to a Certificate Authority (CA). A remote attacker could potentially exploit this by presenting a revoked key, leading to the system accepting it as valid. This could allow an attacker to bypass security checks and potentially gain unauthorized access or spoof legitimate entities.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/knownhosts: golang: golang.org/x/crypto/ssh/knownhosts: Revocation bypass via unchecked SignatureKey",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Important: A flaw in `golang.org/x/crypto/ssh/knownhosts` allows a remote attacker to bypass security checks. This vulnerability arises because the system fails to properly verify the revocation status of a Certificate Authority (CA) `SignatureKey`. In Red Hat environments, this could enable an attacker to present a revoked key, leading to its acceptance as valid and potentially granting unauthorized access or facilitating the spoofing of legitimate entities.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42508"
},
{
"category": "external",
"summary": "RHBZ#2480688",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480688"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42508",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42508"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42508",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42508"
},
{
"category": "external",
"summary": "https://go.dev/cl/781220",
"url": "https://go.dev/cl/781220"
},
{
"category": "external",
"summary": "https://go.dev/issue/79568",
"url": "https://go.dev/issue/79568"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5021",
"url": "https://pkg.go.dev/vuln/GO-2026-5021"
}
],
"release_date": "2026-05-22T02:31:27.644000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:46:32+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36797"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/knownhosts: golang: golang.org/x/crypto/ssh/knownhosts: Revocation bypass via unchecked SignatureKey"
},
{
"cve": "CVE-2026-46595",
"cwe": {
"id": "CWE-303",
"name": "Incorrect Implementation of Authentication Algorithm"
},
"discovery_date": "2026-05-22T04:01:52.215134+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480689"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. Source-address validation can be skipped when an SSH server configuration uses an authentication callback type other than public key, allowing authorization bypass in misconfigured servers. This is a follow-on to incomplete coverage from the CVE-2024-45337 fix.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "golang.org/x/crypto/ssh is vulnerable to authorization bypass when SSH server configurations rely on source-address validation alongside non-public-key authentication callbacks. An attacker with low privileges who can authenticate through such a callback path may bypass intended source-address restrictions and gain unauthorized SSH access. Red Hat impact sits in services built with affected x/crypto/ssh, including RHEL golang streams, hummingbird Go toolchains, RHACM/MCE agents, and OpenShift or Ceph components that embed Go SSH servers with mixed callback types.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-46595"
},
{
"category": "external",
"summary": "RHBZ#2480689",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480689"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-46595",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-46595"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-46595",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-46595"
},
{
"category": "external",
"summary": "https://go.dev/cl/781642",
"url": "https://go.dev/cl/781642"
},
{
"category": "external",
"summary": "https://go.dev/issue/79570",
"url": "https://go.dev/issue/79570"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5023",
"url": "https://pkg.go.dev/vuln/GO-2026-5023"
}
],
"release_date": "2026-05-22T02:31:27.894000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-08T15:46:32+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36797"
},
{
"category": "workaround",
"details": "Upgrade to a fixed golang.org/x/crypto/ssh release via updated golang or package rebuilds. Ensure SSH servers use supported public-key callback configurations with source-address validation as intended.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation"
}
]
}
RHSA-2026:37276
Vulnerability from csaf_redhat - Published: 2026-07-09 12:02 - Updated: 2026-07-10 19:40A flaw was found in the `crypto/x509` package of `golang`. This vulnerability allows a remote attacker to cause a Denial of Service (DoS) by presenting a specially crafted X.509 certificate with a large number of DNS Subject Alternative Name (SAN) entries. The certificate verification process, specifically the `VerifyHostname` function, incurs excessive computational overhead due to repeated string operations when processing these entries. This can lead to a significant performance degradation or unresponsiveness of systems validating such certificates.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
A flaw was found in the `net` package of Go (golang), specifically when using the `LookupCNAME` function with the `cgo` DNS resolver. A remote attacker could exploit this by providing a very long Canonical Name (CNAME) response. This can trigger a double-free of C memory, leading to a crash and a Denial of Service (DoS) for the affected application.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
A flaw was found in the `net/mail` package of the Go programming language. An attacker could provide specially crafted inputs to the `ParseAddress`, `ParseAddressList`, or `ParseDate` functions. This could lead to excessive consumption of CPU and memory resources, resulting in a Denial of Service (DoS) for applications processing these inputs.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname (for example, xn--example-.com returns example.com instead of an error). Applications that validate the ASCII form then convert to Unicode may grant access to a restricted hostname the ASCII check would have rejected.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. A remote attacker could exploit this vulnerability when an SSH server authentication callback returned a PartialSuccessError with non-nil permissions. This flaw caused these permissions to be silently discarded, potentially bypassing certificate restrictions, such as a force-command, after a second authentication factor succeeded. This could lead to unauthorized command execution or access.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. The RSA and DSA public key parsers in the affected component did not enforce size limits on key parameters. This vulnerability allows an unauthenticated client to provide a crafted public key with an excessively large modulus or DSA parameter during public key authentication. Successful exploitation could lead to a denial of service (DoS) due to prolonged CPU consumption during signature verification.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. A remote malicious SSH peer can exploit this by sending unsolicited global request responses, which fills an internal buffer and blocks the connection's read loop. This prevents the associated resources from being released, leading to a resource leak per connection. The consequence is a Denial of Service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh/agent. When a key was added to a remote agent, security restrictions, known as constraint extensions, were not properly processed during the request. This allowed these restrictions to be silently removed when keys were forwarded, leading to the unrestricted use of the key on the remote host. This vulnerability could enable an attacker to bypass intended security controls and perform unauthorized actions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh/agent. The NewKeyring() function, which creates an in-memory keyring, failed to enforce the ConfirmBeforeUse constraint on keys. This allowed keys configured to require user confirmation before use to perform signing operations without any prompt or indication to the user. Consequently, an attacker could potentially bypass intended security controls, leading to unauthorized cryptographic signing actions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. SSH servers configured to use CertChecker as a public key callback, without explicitly setting IsUserAuthority or IsHostAuthority, are vulnerable. A remote attacker can exploit this by presenting a specially crafted certificate, causing the server to panic and resulting in a Denial of Service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
A flaw was found in Prometheus, an open-source monitoring system. The `client_secret` field within the Azure Active Directory (AD) remote write OAuth configuration was incorrectly handled as a plain string instead of a secure Secret type. This misconfiguration allowed any user or process with access to the `/-/config` HTTP API endpoint to view the Azure OAuth client secret in plaintext. This vulnerability leads to information disclosure, potentially compromising the security of integrated Azure AD services.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
A flaw was found in the `net/mail` package within the Go standard library. A remote attacker could provide specially crafted, pathological email addresses. When these malformed email addresses are parsed by the `consumePhrase` function, it can lead to excessive resource consumption due to quadratic string concatenation, resulting in a Denial of Service (DoS) condition.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh/knownhosts. This vulnerability occurs because the system did not correctly check for the revocation status of a SignatureKey belonging to a Certificate Authority (CA). A remote attacker could potentially exploit this by presenting a revoked key, leading to the system accepting it as valid. This could allow an attacker to bypass security checks and potentially gain unauthorized access or spoof legitimate entities.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
A flaw was found in golang.org/x/crypto/ssh. Source-address validation can be skipped when an SSH server configuration uses an authentication callback type other than public key, allowing authorization bypass in misconfigured servers. This is a follow-on to incomplete coverage from the CVE-2024-45337 fix.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "The 1.4.2 release of the RHTAS CLIs.\nFor more details please visit the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4",
"title": "Topic"
},
{
"category": "general",
"text": "The RHTAS CLI Stack images for RHTAS 1.4.2",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:37276",
"url": "https://access.redhat.com/errata/RHSA-2026:37276"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4",
"url": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"url": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-27145",
"url": "https://access.redhat.com/security/cve/CVE-2026-27145"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33811",
"url": "https://access.redhat.com/security/cve/CVE-2026-33811"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39820",
"url": "https://access.redhat.com/security/cve/CVE-2026-39820"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39821",
"url": "https://access.redhat.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39828",
"url": "https://access.redhat.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39829",
"url": "https://access.redhat.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39830",
"url": "https://access.redhat.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39832",
"url": "https://access.redhat.com/security/cve/CVE-2026-39832"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39833",
"url": "https://access.redhat.com/security/cve/CVE-2026-39833"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39835",
"url": "https://access.redhat.com/security/cve/CVE-2026-39835"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42151",
"url": "https://access.redhat.com/security/cve/CVE-2026-42151"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42499",
"url": "https://access.redhat.com/security/cve/CVE-2026-42499"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42508",
"url": "https://access.redhat.com/security/cve/CVE-2026-42508"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-46595",
"url": "https://access.redhat.com/security/cve/CVE-2026-46595"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_37276.json"
}
],
"title": "Red Hat Security Advisory: RHTAS 1.4.2 - CLI Stack Release",
"tracking": {
"current_release_date": "2026-07-10T19:40:51+00:00",
"generator": {
"date": "2026-07-10T19:40:51+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.2"
}
},
"id": "RHSA-2026:37276",
"initial_release_date": "2026-07-09T12:02:04+00:00",
"revision_history": [
{
"date": "2026-07-09T12:02:04+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-07-09T12:02:15+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-10T19:40:51+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Trusted Artifact Signer 1.4",
"product": {
"name": "Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:trusted_artifact_signer:1.4::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Trusted Artifact Signer"
},
{
"branches": [
{
"category": "product_version",
"name": "conforma-cli-stack-v1-4@amd64_darwin",
"product": {
"name": "conforma-cli-stack-v1-4@amd64_darwin",
"product_id": "conforma-cli-stack-v1-4@amd64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/conforma-cli-stack-v1-4@1.4.2?filename=ec_darwin_amd64.tar.gz\u0026checksum=sha256:fcef5c159fbbe52f10daf236ef28e4efff1d10e0a88fac90fd058198c1aee378\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "cosign-cli-stack-v1-4@amd64_darwin",
"product": {
"name": "cosign-cli-stack-v1-4@amd64_darwin",
"product_id": "cosign-cli-stack-v1-4@amd64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/cosign-cli-stack-v1-4@1.4.2?filename=cosign_darwin_amd64.tar.gz\u0026checksum=sha256:7685dd8fc7bf3045457338e6ad609ac8908ab8be2307e9499dcbfab1d87bb82a\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"product": {
"name": "fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"product_id": "fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/fetch-tsa-certs-cli-stack-v1-4@1.4.2?filename=fetch_tsa_certs_darwin_amd64.tar.gz\u0026checksum=sha256:88caa3329af46dc1cff2c5d8b09a3d6c76522d9c3c0b8dc2fd383cf5dffa068d\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "gitsign-cli-stack-v1-4@amd64_darwin",
"product": {
"name": "gitsign-cli-stack-v1-4@amd64_darwin",
"product_id": "gitsign-cli-stack-v1-4@amd64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/gitsign-cli-stack-v1-4@1.4.2?filename=gitsign_cli_darwin_amd64.tar.gz\u0026checksum=sha256:4bacfbbd848fa49497ad338a06c3e882a268b2dbc9484ba5ec623d6386e7a5e1\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "model-transparency-cli-stack-v1-4@amd64_darwin",
"product": {
"name": "model-transparency-cli-stack-v1-4@amd64_darwin",
"product_id": "model-transparency-cli-stack-v1-4@amd64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/model-transparency-cli-stack-v1-4@1.4.2?filename=model_transparency_cli_darwin_amd64.tar.gz\u0026checksum=sha256:c2797779b06e8cdda3c353ee36710e2ac27c5fceb9d085eb6bf39d3840eec5ce\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "rekor-cli-stack-v1-4@amd64_darwin",
"product": {
"name": "rekor-cli-stack-v1-4@amd64_darwin",
"product_id": "rekor-cli-stack-v1-4@amd64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/rekor-cli-stack-v1-4@1.4.2?filename=rekor_cli_darwin_amd64.tar.gz\u0026checksum=sha256:26ddfb13eda8d37115ca5b0175a24434596b99d5d9f166046d00323863b3306b\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "trillian-cli-stack-v1-4@amd64_darwin",
"product": {
"name": "trillian-cli-stack-v1-4@amd64_darwin",
"product_id": "trillian-cli-stack-v1-4@amd64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/trillian-cli-stack-v1-4@1.4.2?filename=updatetree_darwin_amd64.tar.gz\u0026checksum=sha256:c887977ba3ccb420de86dd487c473e1c5be9d255d05d5279c2c9a298cd12378e\u0026download_url=https://developers.redhat.com/products"
}
}
}
],
"category": "architecture",
"name": "amd64_darwin"
},
{
"branches": [
{
"category": "product_version",
"name": "conforma-cli-stack-v1-4@arm64_darwin",
"product": {
"name": "conforma-cli-stack-v1-4@arm64_darwin",
"product_id": "conforma-cli-stack-v1-4@arm64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/conforma-cli-stack-v1-4@1.4.2?filename=ec_darwin_arm64.tar.gz\u0026checksum=sha256:026257fae5f612e658974f3fedbec8803dc8924966332bb03981eb1ff70546b2\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "cosign-cli-stack-v1-4@arm64_darwin",
"product": {
"name": "cosign-cli-stack-v1-4@arm64_darwin",
"product_id": "cosign-cli-stack-v1-4@arm64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/cosign-cli-stack-v1-4@1.4.2?filename=cosign_darwin_arm64.tar.gz\u0026checksum=sha256:b1554bd7ddb35a19a0b721ad5eabb9c0d422505d817d4bd9d6f279bae7859452\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"product": {
"name": "fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"product_id": "fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/fetch-tsa-certs-cli-stack-v1-4@1.4.2?filename=fetch_tsa_certs_darwin_arm64.tar.gz\u0026checksum=sha256:fe37cb537d3cbbf34e3804632eb21b8dfccc8a3b1cd5b13ff9f798b1b8842acf\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "gitsign-cli-stack-v1-4@arm64_darwin",
"product": {
"name": "gitsign-cli-stack-v1-4@arm64_darwin",
"product_id": "gitsign-cli-stack-v1-4@arm64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/gitsign-cli-stack-v1-4@1.4.2?filename=gitsign_cli_darwin_arm64.tar.gz\u0026checksum=sha256:053f539b47232842d4c808588c5e8e5a28d2dd32a831985dfe53fe2cd97218fc\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "model-transparency-cli-stack-v1-4@arm64_darwin",
"product": {
"name": "model-transparency-cli-stack-v1-4@arm64_darwin",
"product_id": "model-transparency-cli-stack-v1-4@arm64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/model-transparency-cli-stack-v1-4@1.4.2?filename=model_transparency_cli_darwin_arm64.tar.gz\u0026checksum=sha256:921a524347dc770d4fdcc78dde6617787ecc8c89e06a6b884637e5b626c024d0\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "rekor-cli-stack-v1-4@arm64_darwin",
"product": {
"name": "rekor-cli-stack-v1-4@arm64_darwin",
"product_id": "rekor-cli-stack-v1-4@arm64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/rekor-cli-stack-v1-4@1.4.2?filename=rekor_cli_darwin_arm64.tar.gz\u0026checksum=sha256:8b5ec569fd842b35cd83246ca52a892c84cd947fdebdf94c6b6b90c8987bcf87\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "trillian-cli-stack-v1-4@arm64_darwin",
"product": {
"name": "trillian-cli-stack-v1-4@arm64_darwin",
"product_id": "trillian-cli-stack-v1-4@arm64_darwin",
"product_identification_helper": {
"purl": "pkg:generic/trillian-cli-stack-v1-4@1.4.2?filename=updatetree_darwin_arm64.tar.gz\u0026checksum=sha256:1b48c9b409961d2969c17abd1c5d34b9ea3b4da8b166bc20859971de0168222f\u0026download_url=https://developers.redhat.com/products"
}
}
}
],
"category": "architecture",
"name": "arm64_darwin"
},
{
"branches": [
{
"category": "product_version",
"name": "conforma-cli-stack-v1-4@amd64",
"product": {
"name": "conforma-cli-stack-v1-4@amd64",
"product_id": "conforma-cli-stack-v1-4@amd64",
"product_identification_helper": {
"purl": "pkg:generic/conforma-cli-stack-v1-4@1.4.2?filename=ec_linux_amd64.tar.gz\u0026checksum=sha256:8d94dddf37a075012570bc25943af0bab4c18cf0a2f2e7df12420cb65426098f\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "cosign-cli-stack-v1-4@amd64",
"product": {
"name": "cosign-cli-stack-v1-4@amd64",
"product_id": "cosign-cli-stack-v1-4@amd64",
"product_identification_helper": {
"purl": "pkg:generic/cosign-cli-stack-v1-4@1.4.2?filename=cosign_linux_amd64.tar.gz\u0026checksum=sha256:14ef4fba87de2550849c725f51dd9840d253d5dd5714497a2e163d0469ba56cf\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "fetch-tsa-certs-cli-stack-v1-4@amd64",
"product": {
"name": "fetch-tsa-certs-cli-stack-v1-4@amd64",
"product_id": "fetch-tsa-certs-cli-stack-v1-4@amd64",
"product_identification_helper": {
"purl": "pkg:generic/fetch-tsa-certs-cli-stack-v1-4@1.4.2?filename=fetch_tsa_certs_linux_amd64.tar.gz\u0026checksum=sha256:1745ce976b3b40459e45315045844eec6da05257cbfaa9d7d691326253e570b7\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "gitsign-cli-stack-v1-4@amd64",
"product": {
"name": "gitsign-cli-stack-v1-4@amd64",
"product_id": "gitsign-cli-stack-v1-4@amd64",
"product_identification_helper": {
"purl": "pkg:generic/gitsign-cli-stack-v1-4@1.4.2?filename=gitsign_cli_linux_amd64.tar.gz\u0026checksum=sha256:0c9b642430f1b93be2fe54c2b187e01d3b8f2fa6a3bd397b3f99bb4f503c98e9\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "model-transparency-cli-stack-v1-4@amd64",
"product": {
"name": "model-transparency-cli-stack-v1-4@amd64",
"product_id": "model-transparency-cli-stack-v1-4@amd64",
"product_identification_helper": {
"purl": "pkg:generic/model-transparency-cli-stack-v1-4@1.4.2?filename=model_transparency_cli_pkcs11_linux_amd64.tar.gz\u0026checksum=sha256:a3fbc311728367f1b3944cdbad95e71daaad26fc2600fae568fc547e3bfe0ec0\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "rekor-cli-stack-v1-4@amd64",
"product": {
"name": "rekor-cli-stack-v1-4@amd64",
"product_id": "rekor-cli-stack-v1-4@amd64",
"product_identification_helper": {
"purl": "pkg:generic/rekor-cli-stack-v1-4@1.4.2?filename=rekor_cli_linux_amd64.tar.gz\u0026checksum=sha256:55b3c98d8b67a98d271e7d2da6d2bf105187bbc0bc47024b846a7da8c134e011\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "trillian-cli-stack-v1-4@amd64",
"product": {
"name": "trillian-cli-stack-v1-4@amd64",
"product_id": "trillian-cli-stack-v1-4@amd64",
"product_identification_helper": {
"purl": "pkg:generic/trillian-cli-stack-v1-4@1.4.2?filename=updatetree_linux_amd64.tar.gz\u0026checksum=sha256:0524e93581dbac55bd4c61b5963889becfd8236b48ead5f7e5bb9e75f764315e\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "tuftool-cli-stack-v1-4@amd64",
"product": {
"name": "tuftool-cli-stack-v1-4@amd64",
"product_id": "tuftool-cli-stack-v1-4@amd64",
"product_identification_helper": {
"purl": "pkg:generic/tuftool-cli-stack-v1-4@1.4.2?filename=tuftool_linux_amd64.tar.gz\u0026checksum=sha256:44585c9dc569d2a9f546354a691f52603a7be1a9910f38a1e8633ac978434043\u0026download_url=https://developers.redhat.com/products"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "conforma-cli-stack-v1-4@arm64",
"product": {
"name": "conforma-cli-stack-v1-4@arm64",
"product_id": "conforma-cli-stack-v1-4@arm64",
"product_identification_helper": {
"purl": "pkg:generic/conforma-cli-stack-v1-4@1.4.2?filename=ec_linux_arm64.tar.gz\u0026checksum=sha256:a2486dd0b191dc3a062a578b80432deae52da4cf6a88db7422ccd9a1b31997c7\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "cosign-cli-stack-v1-4@arm64",
"product": {
"name": "cosign-cli-stack-v1-4@arm64",
"product_id": "cosign-cli-stack-v1-4@arm64",
"product_identification_helper": {
"purl": "pkg:generic/cosign-cli-stack-v1-4@1.4.2?filename=cosign_linux_arm64.tar.gz\u0026checksum=sha256:95a6a8b00deaef251041aeea5d83be5076ed7a4fa2e85e00a5fb8ad855100db9\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "fetch-tsa-certs-cli-stack-v1-4@arm64",
"product": {
"name": "fetch-tsa-certs-cli-stack-v1-4@arm64",
"product_id": "fetch-tsa-certs-cli-stack-v1-4@arm64",
"product_identification_helper": {
"purl": "pkg:generic/fetch-tsa-certs-cli-stack-v1-4@1.4.2?filename=fetch_tsa_certs_linux_arm64.tar.gz\u0026checksum=sha256:56df74bca855aaec3eb3fefd5d820701f8d49e9525a30594dc0bf5be29220a1a\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "gitsign-cli-stack-v1-4@arm64",
"product": {
"name": "gitsign-cli-stack-v1-4@arm64",
"product_id": "gitsign-cli-stack-v1-4@arm64",
"product_identification_helper": {
"purl": "pkg:generic/gitsign-cli-stack-v1-4@1.4.2?filename=gitsign_cli_linux_arm64.tar.gz\u0026checksum=sha256:ee557a2039789e5a22c5da6cf87daff9609c364db58f40b860095aaf397f25b5\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "model-transparency-cli-stack-v1-4@arm64",
"product": {
"name": "model-transparency-cli-stack-v1-4@arm64",
"product_id": "model-transparency-cli-stack-v1-4@arm64",
"product_identification_helper": {
"purl": "pkg:generic/model-transparency-cli-stack-v1-4@1.4.2?filename=model_transparency_cli_pkcs11_linux_arm64.tar.gz\u0026checksum=sha256:8d68d756af91231329428d1b9404c10769ffeb3cb5977bae4a2b36477da4296f\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "rekor-cli-stack-v1-4@arm64",
"product": {
"name": "rekor-cli-stack-v1-4@arm64",
"product_id": "rekor-cli-stack-v1-4@arm64",
"product_identification_helper": {
"purl": "pkg:generic/rekor-cli-stack-v1-4@1.4.2?filename=rekor_cli_linux_arm64.tar.gz\u0026checksum=sha256:b7f0c43de7bb2bee8c312c3ba5962f9908dcff316465bf294e2f45608973704b\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "trillian-cli-stack-v1-4@arm64",
"product": {
"name": "trillian-cli-stack-v1-4@arm64",
"product_id": "trillian-cli-stack-v1-4@arm64",
"product_identification_helper": {
"purl": "pkg:generic/trillian-cli-stack-v1-4@1.4.2?filename=updatetree_linux_arm64.tar.gz\u0026checksum=sha256:4a7b9e72cd5e0b2ce0394d3eb0b15037d788d491b16bcc38ec17e303426470ea\u0026download_url=https://developers.redhat.com/products"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "conforma-cli-stack-v1-4@ppc64le",
"product": {
"name": "conforma-cli-stack-v1-4@ppc64le",
"product_id": "conforma-cli-stack-v1-4@ppc64le",
"product_identification_helper": {
"purl": "pkg:generic/conforma-cli-stack-v1-4@1.4.2?filename=ec_linux_ppc64le.tar.gz\u0026checksum=sha256:fc4734836efdf37e357a6d1737e188ec4e7cb0d246550e4aa0fc234e7cc2787c\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "cosign-cli-stack-v1-4@ppc64le",
"product": {
"name": "cosign-cli-stack-v1-4@ppc64le",
"product_id": "cosign-cli-stack-v1-4@ppc64le",
"product_identification_helper": {
"purl": "pkg:generic/cosign-cli-stack-v1-4@1.4.2?filename=cosign_linux_ppc64le.tar.gz\u0026checksum=sha256:b77c879a8afff89dc52c735cf6f672455897ab9b1addce614a117ca22c6117de\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"product": {
"name": "fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"product_id": "fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"product_identification_helper": {
"purl": "pkg:generic/fetch-tsa-certs-cli-stack-v1-4@1.4.2?filename=fetch_tsa_certs_linux_ppc64le.tar.gz\u0026checksum=sha256:d69ce340e87731eb088f7904c85be98096a869763aa24bbf90497a129f6ff729\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "gitsign-cli-stack-v1-4@ppc64le",
"product": {
"name": "gitsign-cli-stack-v1-4@ppc64le",
"product_id": "gitsign-cli-stack-v1-4@ppc64le",
"product_identification_helper": {
"purl": "pkg:generic/gitsign-cli-stack-v1-4@1.4.2?filename=gitsign_cli_linux_ppc64le.tar.gz\u0026checksum=sha256:2a9ee7a47149e483c8f52906013e3e1c61aa9c6726799ed3f286653d245b86fe\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "model-transparency-cli-stack-v1-4@ppc64le",
"product": {
"name": "model-transparency-cli-stack-v1-4@ppc64le",
"product_id": "model-transparency-cli-stack-v1-4@ppc64le",
"product_identification_helper": {
"purl": "pkg:generic/model-transparency-cli-stack-v1-4@1.4.2?filename=model_transparency_cli_pkcs11_linux_ppc64le.tar.gz\u0026checksum=sha256:9d02da54aba46f245fa241b9febf9fe8e33051c9115fa4df761d28db9057977e\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "rekor-cli-stack-v1-4@ppc64le",
"product": {
"name": "rekor-cli-stack-v1-4@ppc64le",
"product_id": "rekor-cli-stack-v1-4@ppc64le",
"product_identification_helper": {
"purl": "pkg:generic/rekor-cli-stack-v1-4@1.4.2?filename=rekor_cli_linux_ppc64le.tar.gz\u0026checksum=sha256:4322571c2f1f07c3edb6ae7223198c063086bb5b56c7e0b031a4600ff9860596\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "trillian-cli-stack-v1-4@ppc64le",
"product": {
"name": "trillian-cli-stack-v1-4@ppc64le",
"product_id": "trillian-cli-stack-v1-4@ppc64le",
"product_identification_helper": {
"purl": "pkg:generic/trillian-cli-stack-v1-4@1.4.2?filename=updatetree_linux_ppc64le.tar.gz\u0026checksum=sha256:4d1a82a524a64df409c97f9e0da8c21c7c47cd746d26ab88af501b3eea247ece\u0026download_url=https://developers.redhat.com/products"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "conforma-cli-stack-v1-4@s390x",
"product": {
"name": "conforma-cli-stack-v1-4@s390x",
"product_id": "conforma-cli-stack-v1-4@s390x",
"product_identification_helper": {
"purl": "pkg:generic/conforma-cli-stack-v1-4@1.4.2?filename=ec_linux_s390x.tar.gz\u0026checksum=sha256:f55518c891b6fc44983ba9522bde74c28801832cffda173ff7059b54e9473463\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "cosign-cli-stack-v1-4@s390x",
"product": {
"name": "cosign-cli-stack-v1-4@s390x",
"product_id": "cosign-cli-stack-v1-4@s390x",
"product_identification_helper": {
"purl": "pkg:generic/cosign-cli-stack-v1-4@1.4.2?filename=cosign_linux_s390x.tar.gz\u0026checksum=sha256:bb8f9e81435db0c22c125f797bf13d0e1e450d1526fc0f7d9c57bf20103217d1\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "fetch-tsa-certs-cli-stack-v1-4@s390x",
"product": {
"name": "fetch-tsa-certs-cli-stack-v1-4@s390x",
"product_id": "fetch-tsa-certs-cli-stack-v1-4@s390x",
"product_identification_helper": {
"purl": "pkg:generic/fetch-tsa-certs-cli-stack-v1-4@1.4.2?filename=fetch_tsa_certs_linux_s390x.tar.gz\u0026checksum=sha256:91a86ecf400ef33d01460729bab35a6c2c75974afe172eb60be65777a20d84a9\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "gitsign-cli-stack-v1-4@s390x",
"product": {
"name": "gitsign-cli-stack-v1-4@s390x",
"product_id": "gitsign-cli-stack-v1-4@s390x",
"product_identification_helper": {
"purl": "pkg:generic/gitsign-cli-stack-v1-4@1.4.2?filename=gitsign_cli_linux_s390x.tar.gz\u0026checksum=sha256:18777b954900232487d4ec5d38ee06e4f2cf7910f0890f9939eccb3145a71609\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "model-transparency-cli-stack-v1-4@s390x",
"product": {
"name": "model-transparency-cli-stack-v1-4@s390x",
"product_id": "model-transparency-cli-stack-v1-4@s390x",
"product_identification_helper": {
"purl": "pkg:generic/model-transparency-cli-stack-v1-4@1.4.2?filename=model_transparency_cli_pkcs11_linux_s390x.tar.gz\u0026checksum=sha256:09d94092e31c6b75eeb8a401636086e5bbc9b20015f585a98e47cf1901be5b9d\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "rekor-cli-stack-v1-4@s390x",
"product": {
"name": "rekor-cli-stack-v1-4@s390x",
"product_id": "rekor-cli-stack-v1-4@s390x",
"product_identification_helper": {
"purl": "pkg:generic/rekor-cli-stack-v1-4@1.4.2?filename=rekor_cli_linux_s390x.tar.gz\u0026checksum=sha256:296e28921ab43bd8c009e932966536c5c362cd098adf6197cbad3c10cc168be5\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "trillian-cli-stack-v1-4@s390x",
"product": {
"name": "trillian-cli-stack-v1-4@s390x",
"product_id": "trillian-cli-stack-v1-4@s390x",
"product_identification_helper": {
"purl": "pkg:generic/trillian-cli-stack-v1-4@1.4.2?filename=updatetree_linux_s390x.tar.gz\u0026checksum=sha256:e06b62cebffe30897d7aa142328166448dbe3627f9409620d94ee51e91ef0725\u0026download_url=https://developers.redhat.com/products"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "conforma-cli-stack-v1-4@amd64_windows",
"product": {
"name": "conforma-cli-stack-v1-4@amd64_windows",
"product_id": "conforma-cli-stack-v1-4@amd64_windows",
"product_identification_helper": {
"purl": "pkg:generic/conforma-cli-stack-v1-4@1.4.2?filename=ec_windows_amd64.zip\u0026checksum=sha256:b4c75113b0da7a331b0f4c03c111be37881eb1282676f09036c058ee08823520\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "cosign-cli-stack-v1-4@amd64_windows",
"product": {
"name": "cosign-cli-stack-v1-4@amd64_windows",
"product_id": "cosign-cli-stack-v1-4@amd64_windows",
"product_identification_helper": {
"purl": "pkg:generic/cosign-cli-stack-v1-4@1.4.2?filename=cosign_windows_amd64.zip\u0026checksum=sha256:7a1543f6dd3281539fedcffdb2704db58c127069ded5834b1729cd6252f64abd\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"product": {
"name": "fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"product_id": "fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"product_identification_helper": {
"purl": "pkg:generic/fetch-tsa-certs-cli-stack-v1-4@1.4.2?filename=fetch_tsa_certs_windows_amd64.zip\u0026checksum=sha256:1927926c9f363291c96188ee998abd4465e7aee8c9db25289c811c3c78ec79d0\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "gitsign-cli-stack-v1-4@amd64_windows",
"product": {
"name": "gitsign-cli-stack-v1-4@amd64_windows",
"product_id": "gitsign-cli-stack-v1-4@amd64_windows",
"product_identification_helper": {
"purl": "pkg:generic/gitsign-cli-stack-v1-4@1.4.2?filename=gitsign_cli_windows_amd64.zip\u0026checksum=sha256:70be8fc23bd3d39842bf52826f44039b4f6600bed064350b1866e539b37a9125\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "model-transparency-cli-stack-v1-4@amd64_windows",
"product": {
"name": "model-transparency-cli-stack-v1-4@amd64_windows",
"product_id": "model-transparency-cli-stack-v1-4@amd64_windows",
"product_identification_helper": {
"purl": "pkg:generic/model-transparency-cli-stack-v1-4@1.4.2?filename=model_transparency_cli_windows_amd64.exe.gz\u0026checksum=sha256:ad459c17f2e6d3d96f83e5e04f78c20560ff12080fc225c4ce420ac24fb92256\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "rekor-cli-stack-v1-4@amd64_windows",
"product": {
"name": "rekor-cli-stack-v1-4@amd64_windows",
"product_id": "rekor-cli-stack-v1-4@amd64_windows",
"product_identification_helper": {
"purl": "pkg:generic/rekor-cli-stack-v1-4@1.4.2?filename=rekor_cli_windows_amd64.zip\u0026checksum=sha256:48e3616b12225f829b08bf2aec5fb9ea75ea2a4fe0d18bf1769920d6053224d4\u0026download_url=https://developers.redhat.com/products"
}
}
},
{
"category": "product_version",
"name": "trillian-cli-stack-v1-4@amd64_windows",
"product": {
"name": "trillian-cli-stack-v1-4@amd64_windows",
"product_id": "trillian-cli-stack-v1-4@amd64_windows",
"product_identification_helper": {
"purl": "pkg:generic/trillian-cli-stack-v1-4@1.4.2?filename=updatetree_windows_amd64.zip\u0026checksum=sha256:ebc7bc6970b4e18469f6aa959fef6d8ec6b391f85a003b936010effe81295738\u0026download_url=https://developers.redhat.com/products"
}
}
}
],
"category": "architecture",
"name": "amd64_windows"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "conforma-cli-stack-v1-4@amd64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64"
},
"product_reference": "conforma-cli-stack-v1-4@amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "conforma-cli-stack-v1-4@amd64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin"
},
"product_reference": "conforma-cli-stack-v1-4@amd64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "conforma-cli-stack-v1-4@amd64_windows as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows"
},
"product_reference": "conforma-cli-stack-v1-4@amd64_windows",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "conforma-cli-stack-v1-4@arm64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64"
},
"product_reference": "conforma-cli-stack-v1-4@arm64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "conforma-cli-stack-v1-4@arm64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin"
},
"product_reference": "conforma-cli-stack-v1-4@arm64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "conforma-cli-stack-v1-4@ppc64le as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le"
},
"product_reference": "conforma-cli-stack-v1-4@ppc64le",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "conforma-cli-stack-v1-4@s390x as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
},
"product_reference": "conforma-cli-stack-v1-4@s390x",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-cli-stack-v1-4@amd64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64"
},
"product_reference": "cosign-cli-stack-v1-4@amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-cli-stack-v1-4@amd64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin"
},
"product_reference": "cosign-cli-stack-v1-4@amd64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-cli-stack-v1-4@amd64_windows as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows"
},
"product_reference": "cosign-cli-stack-v1-4@amd64_windows",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-cli-stack-v1-4@arm64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64"
},
"product_reference": "cosign-cli-stack-v1-4@arm64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-cli-stack-v1-4@arm64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin"
},
"product_reference": "cosign-cli-stack-v1-4@arm64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-cli-stack-v1-4@ppc64le as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le"
},
"product_reference": "cosign-cli-stack-v1-4@ppc64le",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-cli-stack-v1-4@s390x as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x"
},
"product_reference": "cosign-cli-stack-v1-4@s390x",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fetch-tsa-certs-cli-stack-v1-4@amd64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64"
},
"product_reference": "fetch-tsa-certs-cli-stack-v1-4@amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fetch-tsa-certs-cli-stack-v1-4@amd64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin"
},
"product_reference": "fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fetch-tsa-certs-cli-stack-v1-4@amd64_windows as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows"
},
"product_reference": "fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fetch-tsa-certs-cli-stack-v1-4@arm64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64"
},
"product_reference": "fetch-tsa-certs-cli-stack-v1-4@arm64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fetch-tsa-certs-cli-stack-v1-4@arm64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin"
},
"product_reference": "fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fetch-tsa-certs-cli-stack-v1-4@ppc64le as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le"
},
"product_reference": "fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fetch-tsa-certs-cli-stack-v1-4@s390x as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x"
},
"product_reference": "fetch-tsa-certs-cli-stack-v1-4@s390x",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitsign-cli-stack-v1-4@amd64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64"
},
"product_reference": "gitsign-cli-stack-v1-4@amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitsign-cli-stack-v1-4@amd64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin"
},
"product_reference": "gitsign-cli-stack-v1-4@amd64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitsign-cli-stack-v1-4@amd64_windows as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows"
},
"product_reference": "gitsign-cli-stack-v1-4@amd64_windows",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitsign-cli-stack-v1-4@arm64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64"
},
"product_reference": "gitsign-cli-stack-v1-4@arm64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitsign-cli-stack-v1-4@arm64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin"
},
"product_reference": "gitsign-cli-stack-v1-4@arm64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitsign-cli-stack-v1-4@ppc64le as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le"
},
"product_reference": "gitsign-cli-stack-v1-4@ppc64le",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitsign-cli-stack-v1-4@s390x as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x"
},
"product_reference": "gitsign-cli-stack-v1-4@s390x",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "model-transparency-cli-stack-v1-4@amd64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64"
},
"product_reference": "model-transparency-cli-stack-v1-4@amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "model-transparency-cli-stack-v1-4@amd64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin"
},
"product_reference": "model-transparency-cli-stack-v1-4@amd64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "model-transparency-cli-stack-v1-4@amd64_windows as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows"
},
"product_reference": "model-transparency-cli-stack-v1-4@amd64_windows",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "model-transparency-cli-stack-v1-4@arm64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64"
},
"product_reference": "model-transparency-cli-stack-v1-4@arm64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "model-transparency-cli-stack-v1-4@arm64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin"
},
"product_reference": "model-transparency-cli-stack-v1-4@arm64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "model-transparency-cli-stack-v1-4@ppc64le as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le"
},
"product_reference": "model-transparency-cli-stack-v1-4@ppc64le",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "model-transparency-cli-stack-v1-4@s390x as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x"
},
"product_reference": "model-transparency-cli-stack-v1-4@s390x",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rekor-cli-stack-v1-4@amd64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64"
},
"product_reference": "rekor-cli-stack-v1-4@amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rekor-cli-stack-v1-4@amd64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin"
},
"product_reference": "rekor-cli-stack-v1-4@amd64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rekor-cli-stack-v1-4@amd64_windows as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows"
},
"product_reference": "rekor-cli-stack-v1-4@amd64_windows",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rekor-cli-stack-v1-4@arm64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64"
},
"product_reference": "rekor-cli-stack-v1-4@arm64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rekor-cli-stack-v1-4@arm64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin"
},
"product_reference": "rekor-cli-stack-v1-4@arm64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rekor-cli-stack-v1-4@ppc64le as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le"
},
"product_reference": "rekor-cli-stack-v1-4@ppc64le",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rekor-cli-stack-v1-4@s390x as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x"
},
"product_reference": "rekor-cli-stack-v1-4@s390x",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "trillian-cli-stack-v1-4@amd64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64"
},
"product_reference": "trillian-cli-stack-v1-4@amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "trillian-cli-stack-v1-4@amd64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin"
},
"product_reference": "trillian-cli-stack-v1-4@amd64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "trillian-cli-stack-v1-4@amd64_windows as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows"
},
"product_reference": "trillian-cli-stack-v1-4@amd64_windows",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "trillian-cli-stack-v1-4@arm64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64"
},
"product_reference": "trillian-cli-stack-v1-4@arm64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "trillian-cli-stack-v1-4@arm64_darwin as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin"
},
"product_reference": "trillian-cli-stack-v1-4@arm64_darwin",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "trillian-cli-stack-v1-4@ppc64le as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le"
},
"product_reference": "trillian-cli-stack-v1-4@ppc64le",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "trillian-cli-stack-v1-4@s390x as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x"
},
"product_reference": "trillian-cli-stack-v1-4@s390x",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuftool-cli-stack-v1-4@amd64 as a component of Red Hat Trusted Artifact Signer 1.4",
"product_id": "Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
},
"product_reference": "tuftool-cli-stack-v1-4@amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-27145",
"cwe": {
"id": "CWE-606",
"name": "Unchecked Input for Loop Condition"
},
"discovery_date": "2026-06-02T23:01:08.992540+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2484207"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `crypto/x509` package of `golang`. This vulnerability allows a remote attacker to cause a Denial of Service (DoS) by presenting a specially crafted X.509 certificate with a large number of DNS Subject Alternative Name (SAN) entries. The certificate verification process, specifically the `VerifyHostname` function, incurs excessive computational overhead due to repeated string operations when processing these entries. This can lead to a significant performance degradation or unresponsiveness of systems validating such certificates.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: golang crypto/x509: Denial of Service via excessive processing of DNS SAN entries",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "A flaw was found in the Go standard library crypto/x509 package. When verifying a TLS certificate hostname, VerifyHostname processed each DNS Subject Alternative Name (SAN) entry in a loop and repeatedly split the candidate hostname on \".\" characters. For certificates with a very large DNS SAN list, CPU use could grow quadratically with the number of SAN entries and hostname labels. Because hostname verification runs before the certificate chain is built, this overhead can occur even when the certificate is not trusted.\n\nRed Hat rates this issue as Important. It affects Red Hat products that include the Go standard library crypto/x509 code from an affected Go toolchain version (before Go 1.25.11, or from Go 1.26.0 through Go 1.26.3). Applications and container images built with a fixed Go release (1.25.11 or later, or 1.26.4 or later) are not affected. Community distributions such as Fedora are also affected.\n\nUpstream fix: Go 1.25.11 and Go 1.26.4 (GO-2026-5037).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27145"
},
{
"category": "external",
"summary": "RHBZ#2484207",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2484207"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27145",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27145"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27145",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27145"
},
{
"category": "external",
"summary": "https://go.dev/cl/783621",
"url": "https://go.dev/cl/783621"
},
{
"category": "external",
"summary": "https://go.dev/issue/79694",
"url": "https://go.dev/issue/79694"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/tKs3rmcBcKw",
"url": "https://groups.google.com/g/golang-announce/c/tKs3rmcBcKw"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5037",
"url": "https://pkg.go.dev/vuln/GO-2026-5037"
}
],
"release_date": "2026-06-02T22:01:36.954000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-09T12:02:04+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:37276"
},
{
"category": "workaround",
"details": "A flaw was found in the Go standard library crypto/x509 package. When verifying a TLS certificate hostname, VerifyHostname processed each DNS Subject Alternative Name (SAN) entry in a loop and repeatedly split the candidate hostname on \".\" characters. For certificates with a very large DNS SAN list, CPU use could grow quadratically with the number of SAN entries and hostname labels. Because hostname verification runs before the certificate chain is built, this overhead can occur even when the certificate is not trusted.\n\nRed Hat rates this issue as Important. It affects Red Hat products that include the Go standard library crypto/x509 code from an affected Go toolchain version (before Go 1.25.11, or from Go 1.26.0 through Go 1.26.3). Applications and container images built with a fixed Go release (1.25.11 or later, or 1.26.4 or later) are not affected. Community distributions such as Fedora are also affected.\n\nUpstream fix: Go 1.25.11 and Go 1.26.4 (GO-2026-5037).",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: golang crypto/x509: Denial of Service via excessive processing of DNS SAN entries"
},
{
"cve": "CVE-2026-33811",
"cwe": {
"id": "CWE-1341",
"name": "Multiple Releases of Same Resource or Handle"
},
"discovery_date": "2026-05-07T20:01:34.913869+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467822"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `net` package of Go (golang), specifically when using the `LookupCNAME` function with the `cgo` DNS resolver. A remote attacker could exploit this by providing a very long Canonical Name (CNAME) response. This can trigger a double-free of C memory, leading to a crash and a Denial of Service (DoS) for the affected application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go `net` package, affecting applications configured to use the `cgo` DNS resolver. A remote attacker could trigger a double-free memory error by providing a very long CNAME response, leading to a crash of the vulnerable application and impacting service availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33811"
},
{
"category": "external",
"summary": "RHBZ#2467822",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467822"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33811",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33811"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33811",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33811"
},
{
"category": "external",
"summary": "https://go.dev/cl/767860",
"url": "https://go.dev/cl/767860"
},
{
"category": "external",
"summary": "https://go.dev/issue/78803",
"url": "https://go.dev/issue/78803"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M",
"url": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4981",
"url": "https://pkg.go.dev/vuln/GO-2026-4981"
}
],
"release_date": "2026-05-07T19:41:19.285000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-09T12:02:04+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:37276"
},
{
"category": "workaround",
"details": "To mitigate this issue, applications can be configured to use the pure Go DNS resolver instead of the `cgo` DNS resolver. This can be achieved by setting the `GODEBUG` environment variable to `netdns=go`. For example, to run a Go application with this mitigation: `GODEBUG=netdns=go /path/to/your/go/application`. This change may require restarting affected applications or services to take effect. Users should verify that this change does not negatively impact DNS resolution for their specific application environment.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME"
},
{
"cve": "CVE-2026-39820",
"cwe": {
"id": "CWE-606",
"name": "Unchecked Input for Loop Condition"
},
"discovery_date": "2026-05-07T20:01:27.800929+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467820"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `net/mail` package of the Go programming language. An attacker could provide specially crafted inputs to the `ParseAddress`, `ParseAddressList`, or `ParseDate` functions. This could lead to excessive consumption of CPU and memory resources, resulting in a Denial of Service (DoS) for applications processing these inputs.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/mail: golang: Go net/mail: Denial of Service via crafted email inputs",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go `net/mail` package. Applications processing untrusted email inputs via `ParseAddress`, `ParseAddressList`, or `ParseDate` functions are susceptible to excessive resource consumption, which can lead to service unavailability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39820"
},
{
"category": "external",
"summary": "RHBZ#2467820",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467820"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39820",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39820"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39820",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39820"
},
{
"category": "external",
"summary": "https://go.dev/cl/759940",
"url": "https://go.dev/cl/759940"
},
{
"category": "external",
"summary": "https://go.dev/issue/78566",
"url": "https://go.dev/issue/78566"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M",
"url": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4986",
"url": "https://pkg.go.dev/vuln/GO-2026-4986"
}
],
"release_date": "2026-05-07T19:41:19.854000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-09T12:02:04+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:37276"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/mail: golang: Go net/mail: Denial of Service via crafted email inputs"
},
{
"cve": "CVE-2026-39821",
"cwe": {
"id": "CWE-1289",
"name": "Improper Validation of Unsafe Equivalence in Input"
},
"discovery_date": "2026-05-22T16:00:52.844126+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480756"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname (for example, xn--example-.com returns example.com instead of an error). Applications that validate the ASCII form then convert to Unicode may grant access to a restricted hostname the ASCII check would have rejected.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "golang.org/x/net/idna is vulnerable to privilege escalation through incorrect Punycode label handling in ToASCII and ToUnicode. An attacker who can supply a Punycode hostname that passes an ASCII-only authorization check may have it normalized to a restricted ASCII name the application intended to block. Red Hat exposure is broad across products shipping the Go toolchain or bundling golang.org/x/net, including RHEL and RHEL-AI golang RPMs, hummingbird Go runtimes, OpenShift and ODF container builds, and Ceph/OpenShift components compiled against affected x/net versions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "RHBZ#2480756",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480756"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39821",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39821"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39821",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39821"
},
{
"category": "external",
"summary": "https://go.dev/cl/767220",
"url": "https://go.dev/cl/767220"
},
{
"category": "external",
"summary": "https://go.dev/issue/78760",
"url": "https://go.dev/issue/78760"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8",
"url": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5026",
"url": "https://pkg.go.dev/vuln/GO-2026-5026"
}
],
"release_date": "2026-05-22T15:01:21.462000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-09T12:02:04+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:37276"
},
{
"category": "workaround",
"details": "Upgrade to a fixed golang.org/x/net release that includes the idna correction, via updated golang or dependent package rebuilds.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing"
},
{
"cve": "CVE-2026-39828",
"cwe": {
"id": "CWE-281",
"name": "Improper Preservation of Permissions"
},
"discovery_date": "2026-05-22T04:01:46.775641+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480687"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. A remote attacker could exploit this vulnerability when an SSH server authentication callback returned a PartialSuccessError with non-nil permissions. This flaw caused these permissions to be silently discarded, potentially bypassing certificate restrictions, such as a force-command, after a second authentication factor succeeded. This could lead to unauthorized command execution or access.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important security flaw in the `golang.org/x/crypto/ssh` library. When an SSH server utilizing this library is configured with specific authentication callbacks that return a `PartialSuccessError` with non-nil permissions, an attacker could bypass intended certificate restrictions, such as `force-command`. This bypass could lead to unauthorized command execution or access on affected Red Hat systems configured with multi-factor authentication and certificate-based access controls.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "RHBZ#2480687",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480687"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39828",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39828"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39828",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39828"
},
{
"category": "external",
"summary": "https://go.dev/cl/781621",
"url": "https://go.dev/cl/781621"
},
{
"category": "external",
"summary": "https://go.dev/issue/79562",
"url": "https://go.dev/issue/79562"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5014",
"url": "https://pkg.go.dev/vuln/GO-2026-5014"
}
],
"release_date": "2026-05-22T02:31:26.883000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-09T12:02:04+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:37276"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions"
},
{
"cve": "CVE-2026-39829",
"cwe": {
"id": "CWE-1284",
"name": "Improper Validation of Specified Quantity in Input"
},
"discovery_date": "2026-05-22T04:01:30.092249+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480681"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. The RSA and DSA public key parsers in the affected component did not enforce size limits on key parameters. This vulnerability allows an unauthenticated client to provide a crafted public key with an excessively large modulus or DSA parameter during public key authentication. Successful exploitation could lead to a denial of service (DoS) due to prolonged CPU consumption during signature verification.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in golang.org/x/crypto/ssh is rated as Important. An unauthenticated remote attacker could trigger a denial of service by providing a specially crafted public key with excessively large parameters during SSH public key authentication. This could lead to prolonged CPU consumption on the server, impacting service availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "RHBZ#2480681",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480681"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39829",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39829"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39829",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39829"
},
{
"category": "external",
"summary": "https://go.dev/cl/781641",
"url": "https://go.dev/cl/781641"
},
{
"category": "external",
"summary": "https://go.dev/cl/781661",
"url": "https://go.dev/cl/781661"
},
{
"category": "external",
"summary": "https://go.dev/issue/79565",
"url": "https://go.dev/issue/79565"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5018",
"url": "https://pkg.go.dev/vuln/GO-2026-5018"
}
],
"release_date": "2026-05-22T02:31:27.324000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-09T12:02:04+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:37276"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters"
},
{
"cve": "CVE-2026-39830",
"cwe": {
"id": "CWE-772",
"name": "Missing Release of Resource after Effective Lifetime"
},
"discovery_date": "2026-05-22T04:01:38.517202+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480684"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. A remote malicious SSH peer can exploit this by sending unsolicited global request responses, which fills an internal buffer and blocks the connection\u0027s read loop. This prevents the associated resources from being released, leading to a resource leak per connection. The consequence is a Denial of Service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service flaw in `golang.org/x/crypto/ssh`. A remote, unauthenticated attacker can exploit this vulnerability by sending unsolicited global request responses to an affected SSH server, leading to resource exhaustion and a denial of service. The impact is considered Important due to the potential for unauthenticated remote disruption of services utilizing the vulnerable SSH library.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "RHBZ#2480684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480684"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39830",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39830"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39830",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39830"
},
{
"category": "external",
"summary": "https://go.dev/cl/781640",
"url": "https://go.dev/cl/781640"
},
{
"category": "external",
"summary": "https://go.dev/cl/781664",
"url": "https://go.dev/cl/781664"
},
{
"category": "external",
"summary": "https://go.dev/issue/79564",
"url": "https://go.dev/issue/79564"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5017",
"url": "https://pkg.go.dev/vuln/GO-2026-5017"
}
],
"release_date": "2026-05-22T02:31:27.208000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-09T12:02:04+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:37276"
},
{
"category": "workaround",
"details": "To mitigate this denial of service vulnerability, restrict network access to any service that utilizes the `golang.org/x/crypto/ssh` library and is exposed to untrusted networks. Implement firewall rules to allow connections only from trusted hosts or networks. This action limits the ability of malicious peers to send unsolicited global request responses. A restart of the affected service may be necessary for the new network rules to be applied effectively.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses"
},
{
"cve": "CVE-2026-39832",
"cwe": {
"id": "CWE-281",
"name": "Improper Preservation of Permissions"
},
"discovery_date": "2026-05-22T04:01:41.402561+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480685"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh/agent. When a key was added to a remote agent, security restrictions, known as constraint extensions, were not properly processed during the request. This allowed these restrictions to be silently removed when keys were forwarded, leading to the unrestricted use of the key on the remote host. This vulnerability could enable an attacker to bypass intended security controls and perform unauthorized actions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to improper handling of key restrictions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important vulnerability in `golang.org/x/crypto/ssh/agent` allows for a security bypass when SSH keys with destination restrictions are forwarded via an SSH agent. This flaw could lead to unintended exposure of SSH keys, enabling an attacker to use the forwarded key without the specified restrictions on remote hosts. Red Hat products utilizing `golang.org/x/crypto/ssh/agent` for key forwarding may be affected if users rely on constraint extensions for limiting key usage.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39832"
},
{
"category": "external",
"summary": "RHBZ#2480685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480685"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39832",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39832"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39832",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39832"
},
{
"category": "external",
"summary": "https://go.dev/cl/778642",
"url": "https://go.dev/cl/778642"
},
{
"category": "external",
"summary": "https://go.dev/issue/79435",
"url": "https://go.dev/issue/79435"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5006",
"url": "https://pkg.go.dev/vuln/GO-2026-5006"
}
],
"release_date": "2026-05-22T02:31:26.660000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-09T12:02:04+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:37276"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to improper handling of key restrictions"
},
{
"cve": "CVE-2026-39833",
"cwe": {
"id": "CWE-358",
"name": "Improperly Implemented Security Check for Standard"
},
"discovery_date": "2026-05-22T04:01:35.714593+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480683"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh/agent. The NewKeyring() function, which creates an in-memory keyring, failed to enforce the ConfirmBeforeUse constraint on keys. This allowed keys configured to require user confirmation before use to perform signing operations without any prompt or indication to the user. Consequently, an attacker could potentially bypass intended security controls, leading to unauthorized cryptographic signing actions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to unenforced key confirmation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat rates this issue as Moderate with RH CVSS 5.5 (CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N). A flaw was found in golang.org/x/crypto/ssh/agent where the in-memory keyring returned by NewKeyring() silently accepted SSH agent keys with the ConfirmBeforeUse constraint but did not enforce interactive confirmation before signing. Exploitation requires local access and low privileges on a system where an affected application uses NewKeyring() with ConfirmBeforeUse. Most Red Hat products that bundle golang.org/x/crypto do not use the ssh/agent ConfirmBeforeUse feature in their supported execution paths. The upstream CISA CVSS 9.1 assumes a broader network attack context that does not reflect Red Hat product deployment.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39833"
},
{
"category": "external",
"summary": "RHBZ#2480683",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480683"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39833",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39833"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39833",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39833"
},
{
"category": "external",
"summary": "https://go.dev/cl/778640",
"url": "https://go.dev/cl/778640"
},
{
"category": "external",
"summary": "https://go.dev/cl/778641",
"url": "https://go.dev/cl/778641"
},
{
"category": "external",
"summary": "https://go.dev/issue/79436",
"url": "https://go.dev/issue/79436"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5005",
"url": "https://pkg.go.dev/vuln/GO-2026-5005"
}
],
"release_date": "2026-05-22T02:31:26.294000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-09T12:02:04+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:37276"
},
{
"category": "workaround",
"details": "Update affected Go applications to use golang.org/x/crypto version 0.52.0 or later, which rejects unsupported ConfirmBeforeUse keys instead of silently ignoring the constraint. As a workaround, do not add keys with ConfirmBeforeUse to the in-memory keyring from golang.org/x/crypto/ssh/agent, or use an SSH agent implementation that correctly enforces confirm-before-use.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to unenforced key confirmation"
},
{
"cve": "CVE-2026-39835",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2026-05-22T04:01:27.279943+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480680"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. SSH servers configured to use CertChecker as a public key callback, without explicitly setting IsUserAuthority or IsHostAuthority, are vulnerable. A remote attacker can exploit this by presenting a specially crafted certificate, causing the server to panic and resulting in a Denial of Service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang: golang.org/x/crypto/ssh: Denial of Service via crafted SSH certificate",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service flaw in `golang.org/x/crypto/ssh` affecting SSH servers that utilize `CertChecker` as a public key callback without explicitly configuring `IsUserAuthority` or `IsHostAuthority`. A remote, unauthenticated attacker can trigger a server panic by presenting a specially crafted certificate, leading to service disruption. Exploitation requires a specific, non-default configuration of the `CertChecker`.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39835"
},
{
"category": "external",
"summary": "RHBZ#2480680",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480680"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39835",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39835"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39835",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39835"
},
{
"category": "external",
"summary": "https://go.dev/cl/781660",
"url": "https://go.dev/cl/781660"
},
{
"category": "external",
"summary": "https://go.dev/issue/79563",
"url": "https://go.dev/issue/79563"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5015",
"url": "https://pkg.go.dev/vuln/GO-2026-5015"
}
],
"release_date": "2026-05-22T02:31:26.982000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-09T12:02:04+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:37276"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang: golang.org/x/crypto/ssh: Denial of Service via crafted SSH certificate"
},
{
"cve": "CVE-2026-42151",
"cwe": {
"id": "CWE-256",
"name": "Plaintext Storage of a Password"
},
"discovery_date": "2026-05-04T19:02:26.983660+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2466507"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Prometheus, an open-source monitoring system. The `client_secret` field within the Azure Active Directory (AD) remote write OAuth configuration was incorrectly handled as a plain string instead of a secure Secret type. This misconfiguration allowed any user or process with access to the `/-/config` HTTP API endpoint to view the Azure OAuth client secret in plaintext. This vulnerability leads to information disclosure, potentially compromising the security of integrated Azure AD services.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/prometheus/prometheus: Prometheus: Information disclosure of Azure OAuth client secret via config API",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important information disclosure flaw in Prometheus affects instances configured to use Azure AD remote write with OAuth authentication. The client secret, intended to be a secure credential, is exposed in plaintext through the `/-/config` HTTP API endpoint. This could allow an attacker with access to this endpoint to retrieve the secret, potentially compromising integrated Azure AD services.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42151"
},
{
"category": "external",
"summary": "RHBZ#2466507",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2466507"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42151",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42151"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42151",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42151"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/pull/18587",
"url": "https://github.com/prometheus/prometheus/pull/18587"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/pull/18590",
"url": "https://github.com/prometheus/prometheus/pull/18590"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/releases/tag/v3.11.3",
"url": "https://github.com/prometheus/prometheus/releases/tag/v3.11.3"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/releases/tag/v3.5.3",
"url": "https://github.com/prometheus/prometheus/releases/tag/v3.5.3"
},
{
"category": "external",
"summary": "https://github.com/prometheus/prometheus/security/advisories/GHSA-wg65-39gg-5wfj",
"url": "https://github.com/prometheus/prometheus/security/advisories/GHSA-wg65-39gg-5wfj"
}
],
"release_date": "2026-05-04T18:12:16.917000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-09T12:02:04+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:37276"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/prometheus/prometheus: Prometheus: Information disclosure of Azure OAuth client secret via config API"
},
{
"cve": "CVE-2026-42499",
"cwe": {
"id": "CWE-1046",
"name": "Creation of Immutable Text Using String Concatenation"
},
"discovery_date": "2026-05-07T20:00:51.685602+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467809"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `net/mail` package within the Go standard library. A remote attacker could provide specially crafted, pathological email addresses. When these malformed email addresses are parsed by the `consumePhrase` function, it can lead to excessive resource consumption due to quadratic string concatenation, resulting in a Denial of Service (DoS) condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/mail: golang: net/mail: Denial of Service via pathological email address parsing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the `net/mail` package of the Go standard library. A remote attacker can exploit this flaw by sending specially crafted email addresses, leading to excessive resource consumption and a denial of service in Go applications that parse email addresses using the affected library.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42499"
},
{
"category": "external",
"summary": "RHBZ#2467809",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467809"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42499",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42499"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42499",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42499"
},
{
"category": "external",
"summary": "https://go.dev/cl/771520",
"url": "https://go.dev/cl/771520"
},
{
"category": "external",
"summary": "https://go.dev/issue/78987",
"url": "https://go.dev/issue/78987"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M",
"url": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4977",
"url": "https://pkg.go.dev/vuln/GO-2026-4977"
}
],
"release_date": "2026-05-07T19:41:18.615000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-09T12:02:04+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:37276"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/mail: golang: net/mail: Denial of Service via pathological email address parsing"
},
{
"cve": "CVE-2026-42508",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2026-05-22T04:01:49.515058+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480688"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh/knownhosts. This vulnerability occurs because the system did not correctly check for the revocation status of a SignatureKey belonging to a Certificate Authority (CA). A remote attacker could potentially exploit this by presenting a revoked key, leading to the system accepting it as valid. This could allow an attacker to bypass security checks and potentially gain unauthorized access or spoof legitimate entities.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/knownhosts: golang: golang.org/x/crypto/ssh/knownhosts: Revocation bypass via unchecked SignatureKey",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Important: A flaw in `golang.org/x/crypto/ssh/knownhosts` allows a remote attacker to bypass security checks. This vulnerability arises because the system fails to properly verify the revocation status of a Certificate Authority (CA) `SignatureKey`. In Red Hat environments, this could enable an attacker to present a revoked key, leading to its acceptance as valid and potentially granting unauthorized access or facilitating the spoofing of legitimate entities.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42508"
},
{
"category": "external",
"summary": "RHBZ#2480688",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480688"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42508",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42508"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42508",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42508"
},
{
"category": "external",
"summary": "https://go.dev/cl/781220",
"url": "https://go.dev/cl/781220"
},
{
"category": "external",
"summary": "https://go.dev/issue/79568",
"url": "https://go.dev/issue/79568"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5021",
"url": "https://pkg.go.dev/vuln/GO-2026-5021"
}
],
"release_date": "2026-05-22T02:31:27.644000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-09T12:02:04+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:37276"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/knownhosts: golang: golang.org/x/crypto/ssh/knownhosts: Revocation bypass via unchecked SignatureKey"
},
{
"cve": "CVE-2026-46595",
"cwe": {
"id": "CWE-303",
"name": "Incorrect Implementation of Authentication Algorithm"
},
"discovery_date": "2026-05-22T04:01:52.215134+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480689"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. Source-address validation can be skipped when an SSH server configuration uses an authentication callback type other than public key, allowing authorization bypass in misconfigured servers. This is a follow-on to incomplete coverage from the CVE-2024-45337 fix.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "golang.org/x/crypto/ssh is vulnerable to authorization bypass when SSH server configurations rely on source-address validation alongside non-public-key authentication callbacks. An attacker with low privileges who can authenticate through such a callback path may bypass intended source-address restrictions and gain unauthorized SSH access. Red Hat impact sits in services built with affected x/crypto/ssh, including RHEL golang streams, hummingbird Go toolchains, RHACM/MCE agents, and OpenShift or Ceph components that embed Go SSH servers with mixed callback types.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-46595"
},
{
"category": "external",
"summary": "RHBZ#2480689",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480689"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-46595",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-46595"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-46595",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-46595"
},
{
"category": "external",
"summary": "https://go.dev/cl/781642",
"url": "https://go.dev/cl/781642"
},
{
"category": "external",
"summary": "https://go.dev/issue/79570",
"url": "https://go.dev/issue/79570"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5023",
"url": "https://pkg.go.dev/vuln/GO-2026-5023"
}
],
"release_date": "2026-05-22T02:31:27.894000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-09T12:02:04+00:00",
"details": "The RHTAS CLI Stack images contain Red Hat Trusted Artifact Signer CLI binaries.\n\nFor details on using the CLI images, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.4/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:37276"
},
{
"category": "workaround",
"details": "Upgrade to a fixed golang.org/x/crypto/ssh release via updated golang or package rebuilds. Ensure SSH servers use supported public-key callback configurations with source-address validation as intended.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:conforma-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:cosign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:fetch-tsa-certs-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:gitsign-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:model-transparency-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:rekor-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@amd64_windows",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@arm64_darwin",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@ppc64le",
"Red Hat Trusted Artifact Signer 1.4:trillian-cli-stack-v1-4@s390x",
"Red Hat Trusted Artifact Signer 1.4:tuftool-cli-stack-v1-4@amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation"
}
]
}
SUSE-SU-2026:1861-1
Vulnerability from csaf_suse - Published: 2026-05-14 22:33 - Updated: 2026-05-14 22:33| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64 | — |
Vendor Fix
|
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for go1.26",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for go1.26 fixes the following issues\n\nSecurity issues:\n\n- CVE-2026-33811: net: crash when handling long CNAME response (bsc#1264508).\n- CVE-2026-33814: net/http: infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE (bsc#1264506).\n- CVE-2026-39817: cmd/go: \u0027go tool pack\u0027 does not sanitize output paths (bsc#1264505).\n- CVE-2026-39819: cmd/go: \u0027go bug\u0027 follows symlinks in predictable temporary filenames (bsc#1264504).\n- CVE-2026-39820: net/mail: quadratic string concatentation in consumeComment (bsc#1264503).\n- CVE-2026-39823: html/template: bypass of meta content URL escaping causes XSS (bsc#1264509).\n- CVE-2026-39825: net/http/httputil: ReverseProxy forwards queries with more than urlmaxqueryparams parameters\n (bsc#1264500).\n- CVE-2026-39826: html/template: escaper bypass leads to XSS (bsc#1264507).\n- CVE-2026-39836: net: panic in Dial and LookupPort when handling NUL byte on Windows (bsc#1264501).\n- CVE-2026-42499: net/mail: quadratic string concatenation in consumePhrase (bsc#1264502).\n- CVE-2026-42501: cmd/go: malicious module proxy can bypass checksum database (bsc#1264499).\n\nNon security issues:\n\n- go1.26 release tracking (bsc#1255111).\n- Go packages miss binutils-gold dependency (bsc#1170826).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-1861,SUSE-SLE-Module-Development-Tools-15-SP7-2026-1861,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-1861,SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-1861,SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-1861,SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-1861,SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-1861,SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-1861,SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-1861,SUSE-SLE-Product-SLES_SAP-15-SP4-2026-1861,SUSE-SLE-Product-SLES_SAP-15-SP5-2026-1861,SUSE-SLE-Product-SLES_SAP-15-SP6-2026-1861",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_1861-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:1861-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261861-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:1861-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-May/046504.html"
},
{
"category": "self",
"summary": "SUSE Bug 1170826",
"url": "https://bugzilla.suse.com/1170826"
},
{
"category": "self",
"summary": "SUSE Bug 1255111",
"url": "https://bugzilla.suse.com/1255111"
},
{
"category": "self",
"summary": "SUSE Bug 1264499",
"url": "https://bugzilla.suse.com/1264499"
},
{
"category": "self",
"summary": "SUSE Bug 1264500",
"url": "https://bugzilla.suse.com/1264500"
},
{
"category": "self",
"summary": "SUSE Bug 1264501",
"url": "https://bugzilla.suse.com/1264501"
},
{
"category": "self",
"summary": "SUSE Bug 1264502",
"url": "https://bugzilla.suse.com/1264502"
},
{
"category": "self",
"summary": "SUSE Bug 1264503",
"url": "https://bugzilla.suse.com/1264503"
},
{
"category": "self",
"summary": "SUSE Bug 1264504",
"url": "https://bugzilla.suse.com/1264504"
},
{
"category": "self",
"summary": "SUSE Bug 1264505",
"url": "https://bugzilla.suse.com/1264505"
},
{
"category": "self",
"summary": "SUSE Bug 1264506",
"url": "https://bugzilla.suse.com/1264506"
},
{
"category": "self",
"summary": "SUSE Bug 1264507",
"url": "https://bugzilla.suse.com/1264507"
},
{
"category": "self",
"summary": "SUSE Bug 1264508",
"url": "https://bugzilla.suse.com/1264508"
},
{
"category": "self",
"summary": "SUSE Bug 1264509",
"url": "https://bugzilla.suse.com/1264509"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33811 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33811/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33814 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39817 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39817/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39819 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39819/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39820 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39820/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39823 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39823/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39825 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39825/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39826 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39826/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39836 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39836/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42499 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42499/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42501 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42501/"
}
],
"title": "Security update for go1.26",
"tracking": {
"current_release_date": "2026-05-14T22:33:21Z",
"generator": {
"date": "2026-05-14T22:33:21Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:1861-1",
"initial_release_date": "2026-05-14T22:33:21Z",
"revision_history": [
{
"date": "2026-05-14T22:33:21Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "go1.26-1.26.3-150000.1.12.1.aarch64",
"product": {
"name": "go1.26-1.26.3-150000.1.12.1.aarch64",
"product_id": "go1.26-1.26.3-150000.1.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"product": {
"name": "go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"product_id": "go1.26-doc-1.26.3-150000.1.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "go1.26-race-1.26.3-150000.1.12.1.aarch64",
"product": {
"name": "go1.26-race-1.26.3-150000.1.12.1.aarch64",
"product_id": "go1.26-race-1.26.3-150000.1.12.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.26-1.26.3-150000.1.12.1.i586",
"product": {
"name": "go1.26-1.26.3-150000.1.12.1.i586",
"product_id": "go1.26-1.26.3-150000.1.12.1.i586"
}
},
{
"category": "product_version",
"name": "go1.26-doc-1.26.3-150000.1.12.1.i586",
"product": {
"name": "go1.26-doc-1.26.3-150000.1.12.1.i586",
"product_id": "go1.26-doc-1.26.3-150000.1.12.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.26-1.26.3-150000.1.12.1.ppc64le",
"product": {
"name": "go1.26-1.26.3-150000.1.12.1.ppc64le",
"product_id": "go1.26-1.26.3-150000.1.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"product": {
"name": "go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"product_id": "go1.26-doc-1.26.3-150000.1.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"product": {
"name": "go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"product_id": "go1.26-race-1.26.3-150000.1.12.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.26-1.26.3-150000.1.12.1.s390x",
"product": {
"name": "go1.26-1.26.3-150000.1.12.1.s390x",
"product_id": "go1.26-1.26.3-150000.1.12.1.s390x"
}
},
{
"category": "product_version",
"name": "go1.26-doc-1.26.3-150000.1.12.1.s390x",
"product": {
"name": "go1.26-doc-1.26.3-150000.1.12.1.s390x",
"product_id": "go1.26-doc-1.26.3-150000.1.12.1.s390x"
}
},
{
"category": "product_version",
"name": "go1.26-race-1.26.3-150000.1.12.1.s390x",
"product": {
"name": "go1.26-race-1.26.3-150000.1.12.1.s390x",
"product_id": "go1.26-race-1.26.3-150000.1.12.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.26-1.26.3-150000.1.12.1.x86_64",
"product": {
"name": "go1.26-1.26.3-150000.1.12.1.x86_64",
"product_id": "go1.26-1.26.3-150000.1.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"product": {
"name": "go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"product_id": "go1.26-doc-1.26.3-150000.1.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "go1.26-race-1.26.3-150000.1.12.1.x86_64",
"product": {
"name": "go1.26-race-1.26.3-150000.1.12.1.x86_64",
"product_id": "go1.26-race-1.26.3-150000.1.12.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-development-tools:15:sp7"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP6-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.3-150000.1.12.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64"
},
"product_reference": "go1.26-1.26.3-150000.1.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.3-150000.1.12.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le"
},
"product_reference": "go1.26-1.26.3-150000.1.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.3-150000.1.12.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x"
},
"product_reference": "go1.26-1.26.3-150000.1.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.3-150000.1.12.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64"
},
"product_reference": "go1.26-1.26.3-150000.1.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.3-150000.1.12.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64"
},
"product_reference": "go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.3-150000.1.12.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le"
},
"product_reference": "go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.3-150000.1.12.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x"
},
"product_reference": "go1.26-doc-1.26.3-150000.1.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.3-150000.1.12.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64"
},
"product_reference": "go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.3-150000.1.12.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64"
},
"product_reference": "go1.26-race-1.26.3-150000.1.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.3-150000.1.12.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le"
},
"product_reference": "go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.3-150000.1.12.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x"
},
"product_reference": "go1.26-race-1.26.3-150000.1.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.3-150000.1.12.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64"
},
"product_reference": "go1.26-race-1.26.3-150000.1.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.3-150000.1.12.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64"
},
"product_reference": "go1.26-1.26.3-150000.1.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.3-150000.1.12.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64"
},
"product_reference": "go1.26-1.26.3-150000.1.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.3-150000.1.12.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64"
},
"product_reference": "go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.3-150000.1.12.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64"
},
"product_reference": "go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.3-150000.1.12.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64"
},
"product_reference": "go1.26-race-1.26.3-150000.1.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.3-150000.1.12.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64"
},
"product_reference": "go1.26-race-1.26.3-150000.1.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.3-150000.1.12.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64"
},
"product_reference": "go1.26-1.26.3-150000.1.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.3-150000.1.12.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64"
},
"product_reference": "go1.26-1.26.3-150000.1.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.3-150000.1.12.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64"
},
"product_reference": "go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.3-150000.1.12.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64"
},
"product_reference": "go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.3-150000.1.12.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64"
},
"product_reference": "go1.26-race-1.26.3-150000.1.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.3-150000.1.12.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64"
},
"product_reference": "go1.26-race-1.26.3-150000.1.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.3-150000.1.12.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64"
},
"product_reference": "go1.26-1.26.3-150000.1.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.3-150000.1.12.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64"
},
"product_reference": "go1.26-1.26.3-150000.1.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.3-150000.1.12.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64"
},
"product_reference": "go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.3-150000.1.12.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64"
},
"product_reference": "go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.3-150000.1.12.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64"
},
"product_reference": "go1.26-race-1.26.3-150000.1.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.3-150000.1.12.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64"
},
"product_reference": "go1.26-race-1.26.3-150000.1.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.3-150000.1.12.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64"
},
"product_reference": "go1.26-1.26.3-150000.1.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.3-150000.1.12.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64"
},
"product_reference": "go1.26-1.26.3-150000.1.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.3-150000.1.12.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64"
},
"product_reference": "go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.3-150000.1.12.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64"
},
"product_reference": "go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.3-150000.1.12.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64"
},
"product_reference": "go1.26-race-1.26.3-150000.1.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.3-150000.1.12.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64"
},
"product_reference": "go1.26-race-1.26.3-150000.1.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.3-150000.1.12.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64"
},
"product_reference": "go1.26-1.26.3-150000.1.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.3-150000.1.12.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le"
},
"product_reference": "go1.26-1.26.3-150000.1.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.3-150000.1.12.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x"
},
"product_reference": "go1.26-1.26.3-150000.1.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.3-150000.1.12.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64"
},
"product_reference": "go1.26-1.26.3-150000.1.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.3-150000.1.12.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64"
},
"product_reference": "go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.3-150000.1.12.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le"
},
"product_reference": "go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.3-150000.1.12.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x"
},
"product_reference": "go1.26-doc-1.26.3-150000.1.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.3-150000.1.12.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64"
},
"product_reference": "go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.3-150000.1.12.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64"
},
"product_reference": "go1.26-race-1.26.3-150000.1.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.3-150000.1.12.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le"
},
"product_reference": "go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.3-150000.1.12.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x"
},
"product_reference": "go1.26-race-1.26.3-150000.1.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.3-150000.1.12.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64"
},
"product_reference": "go1.26-race-1.26.3-150000.1.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.3-150000.1.12.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64"
},
"product_reference": "go1.26-1.26.3-150000.1.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.3-150000.1.12.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le"
},
"product_reference": "go1.26-1.26.3-150000.1.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.3-150000.1.12.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x"
},
"product_reference": "go1.26-1.26.3-150000.1.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.3-150000.1.12.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64"
},
"product_reference": "go1.26-1.26.3-150000.1.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.3-150000.1.12.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64"
},
"product_reference": "go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.3-150000.1.12.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le"
},
"product_reference": "go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.3-150000.1.12.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x"
},
"product_reference": "go1.26-doc-1.26.3-150000.1.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.3-150000.1.12.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64"
},
"product_reference": "go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.3-150000.1.12.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64"
},
"product_reference": "go1.26-race-1.26.3-150000.1.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.3-150000.1.12.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le"
},
"product_reference": "go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.3-150000.1.12.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x"
},
"product_reference": "go1.26-race-1.26.3-150000.1.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.3-150000.1.12.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64"
},
"product_reference": "go1.26-race-1.26.3-150000.1.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.3-150000.1.12.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64"
},
"product_reference": "go1.26-1.26.3-150000.1.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.3-150000.1.12.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le"
},
"product_reference": "go1.26-1.26.3-150000.1.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.3-150000.1.12.1.s390x as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x"
},
"product_reference": "go1.26-1.26.3-150000.1.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.3-150000.1.12.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64"
},
"product_reference": "go1.26-1.26.3-150000.1.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.3-150000.1.12.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64"
},
"product_reference": "go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.3-150000.1.12.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le"
},
"product_reference": "go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.3-150000.1.12.1.s390x as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x"
},
"product_reference": "go1.26-doc-1.26.3-150000.1.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.3-150000.1.12.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64"
},
"product_reference": "go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.3-150000.1.12.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64"
},
"product_reference": "go1.26-race-1.26.3-150000.1.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.3-150000.1.12.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le"
},
"product_reference": "go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.3-150000.1.12.1.s390x as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x"
},
"product_reference": "go1.26-race-1.26.3-150000.1.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.3-150000.1.12.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64"
},
"product_reference": "go1.26-race-1.26.3-150000.1.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.3-150000.1.12.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le"
},
"product_reference": "go1.26-1.26.3-150000.1.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.3-150000.1.12.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64"
},
"product_reference": "go1.26-1.26.3-150000.1.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.3-150000.1.12.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le"
},
"product_reference": "go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.3-150000.1.12.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64"
},
"product_reference": "go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.3-150000.1.12.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le"
},
"product_reference": "go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.3-150000.1.12.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64"
},
"product_reference": "go1.26-race-1.26.3-150000.1.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.3-150000.1.12.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le"
},
"product_reference": "go1.26-1.26.3-150000.1.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.3-150000.1.12.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64"
},
"product_reference": "go1.26-1.26.3-150000.1.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.3-150000.1.12.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le"
},
"product_reference": "go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.3-150000.1.12.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64"
},
"product_reference": "go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.3-150000.1.12.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le"
},
"product_reference": "go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.3-150000.1.12.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64"
},
"product_reference": "go1.26-race-1.26.3-150000.1.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.3-150000.1.12.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le"
},
"product_reference": "go1.26-1.26.3-150000.1.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-1.26.3-150000.1.12.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64"
},
"product_reference": "go1.26-1.26.3-150000.1.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.3-150000.1.12.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le"
},
"product_reference": "go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-doc-1.26.3-150000.1.12.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64"
},
"product_reference": "go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.3-150000.1.12.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le"
},
"product_reference": "go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-race-1.26.3-150000.1.12.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64"
},
"product_reference": "go1.26-race-1.26.3-150000.1.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-33811",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33811"
}
],
"notes": [
{
"category": "general",
"text": "When using LookupCNAME with the cgo DNS resolver, a very long CNAME response can trigger a double-free of C memory and a crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33811",
"url": "https://www.suse.com/security/cve/CVE-2026-33811"
},
{
"category": "external",
"summary": "SUSE Bug 1264508 for CVE-2026-33811",
"url": "https://bugzilla.suse.com/1264508"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-14T22:33:21Z",
"details": "important"
}
],
"title": "CVE-2026-33811"
},
{
"cve": "CVE-2026-33814",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33814"
}
],
"notes": [
{
"category": "general",
"text": "When processing HTTP/2 SETTINGS frames, transport will enter an infinite loop of writing CONTINUATION frames if it receives a SETTINGS_MAX_FRAME_SIZE with a value of 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33814",
"url": "https://www.suse.com/security/cve/CVE-2026-33814"
},
{
"category": "external",
"summary": "SUSE Bug 1264506 for CVE-2026-33814",
"url": "https://bugzilla.suse.com/1264506"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-14T22:33:21Z",
"details": "important"
}
],
"title": "CVE-2026-33814"
},
{
"cve": "CVE-2026-39817",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39817"
}
],
"notes": [
{
"category": "general",
"text": "The \"go tool pack\" subcommand (usually used only by the compiler as an internal tool with known-good inputs) does not sanitize output filenames. Extracting a malicious archive file with the \"pack\" subcommand can write files to arbitrary locations on the filesystem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39817",
"url": "https://www.suse.com/security/cve/CVE-2026-39817"
},
{
"category": "external",
"summary": "SUSE Bug 1264505 for CVE-2026-39817",
"url": "https://bugzilla.suse.com/1264505"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-14T22:33:21Z",
"details": "moderate"
}
],
"title": "CVE-2026-39817"
},
{
"cve": "CVE-2026-39819",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39819"
}
],
"notes": [
{
"category": "general",
"text": "The \"go bug\" command writes to two files with predictable names in the system temporary directory (for example, \"/tmp\"). An attacker with access to the temporary directory can create a symlink in one of these names, causing \"go bug\" to overwrite the target of the symlink.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39819",
"url": "https://www.suse.com/security/cve/CVE-2026-39819"
},
{
"category": "external",
"summary": "SUSE Bug 1264504 for CVE-2026-39819",
"url": "https://bugzilla.suse.com/1264504"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-14T22:33:21Z",
"details": "moderate"
}
],
"title": "CVE-2026-39819"
},
{
"cve": "CVE-2026-39820",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39820"
}
],
"notes": [
{
"category": "general",
"text": "Well-crafted inputs reaching ParseAddress, ParseAddressList, and ParseDate were able to trigger excessive CPU exhaustion and memory allocations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39820",
"url": "https://www.suse.com/security/cve/CVE-2026-39820"
},
{
"category": "external",
"summary": "SUSE Bug 1264503 for CVE-2026-39820",
"url": "https://bugzilla.suse.com/1264503"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-14T22:33:21Z",
"details": "important"
}
],
"title": "CVE-2026-39820"
},
{
"cve": "CVE-2026-39823",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39823"
}
],
"notes": [
{
"category": "general",
"text": "CVE-2026-27142 fixed a vulnerability in which URLs were not correctly escaped inside of a \u003cmeta\u003e tag\u0027s \u003ccontent\u003e attribute. If the URL content were to insert ASCII whitespaces around the \u0027=\u0027 rune inside of the \u003ccontent\u003e attribute, the escaper would fail to similarly escape it, leading to XSS.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39823",
"url": "https://www.suse.com/security/cve/CVE-2026-39823"
},
{
"category": "external",
"summary": "SUSE Bug 1264509 for CVE-2026-39823",
"url": "https://bugzilla.suse.com/1264509"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-14T22:33:21Z",
"details": "moderate"
}
],
"title": "CVE-2026-39823"
},
{
"cve": "CVE-2026-39825",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39825"
}
],
"notes": [
{
"category": "general",
"text": "ReverseProxy can forward queries containing parameters not visible to Rewrite functions. When used with a Rewrite function, or a Director function which parses query parameters, ReverseProxy sanitizes the forwarded request to remove query parameters which are not parsed by url.ParseQuery. ReverseProxy does not take ParseQuery\u0027s limit on the total number of query parameters (controlled by GODEBUG=urlmaxqueryparams=N) into account. This can permit ReverseProxy to forward a request containing a query parameter that is not visible to the Rewrite function. For example, the query \"a1=x\u0026a2=x\u0026...\u0026a10000=x\u0026hidden=y\" can forward the parameter \"hidden=y\" while hiding it from the proxy\u0027s Rewrite function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39825",
"url": "https://www.suse.com/security/cve/CVE-2026-39825"
},
{
"category": "external",
"summary": "SUSE Bug 1264500 for CVE-2026-39825",
"url": "https://bugzilla.suse.com/1264500"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-14T22:33:21Z",
"details": "moderate"
}
],
"title": "CVE-2026-39825"
},
{
"cve": "CVE-2026-39826",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39826"
}
],
"notes": [
{
"category": "general",
"text": "If a trusted template author were to write a \u003cscript\u003e tag containing an empty \u0027type\u0027 attribute or a \u0027type\u0027 attribute with an ASCII whitespace, the execution of the template would incorrectly escape any data passed into the \u003cscript\u003e block.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39826",
"url": "https://www.suse.com/security/cve/CVE-2026-39826"
},
{
"category": "external",
"summary": "SUSE Bug 1264507 for CVE-2026-39826",
"url": "https://bugzilla.suse.com/1264507"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-14T22:33:21Z",
"details": "moderate"
}
],
"title": "CVE-2026-39826"
},
{
"cve": "CVE-2026-39836",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39836"
}
],
"notes": [
{
"category": "general",
"text": "The Dial and LookupPort functions panic on Windows when provided with an input containing a NUL (0).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39836",
"url": "https://www.suse.com/security/cve/CVE-2026-39836"
},
{
"category": "external",
"summary": "SUSE Bug 1264501 for CVE-2026-39836",
"url": "https://bugzilla.suse.com/1264501"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-14T22:33:21Z",
"details": "important"
}
],
"title": "CVE-2026-39836"
},
{
"cve": "CVE-2026-42499",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42499"
}
],
"notes": [
{
"category": "general",
"text": "Pathological inputs could cause DoS through consumePhrase when parsing an email address according to RFC 5322.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42499",
"url": "https://www.suse.com/security/cve/CVE-2026-42499"
},
{
"category": "external",
"summary": "SUSE Bug 1264502 for CVE-2026-42499",
"url": "https://bugzilla.suse.com/1264502"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-14T22:33:21Z",
"details": "important"
}
],
"title": "CVE-2026-42499"
},
{
"cve": "CVE-2026-42501",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42501"
}
],
"notes": [
{
"category": "general",
"text": "A malicious module proxy can exploit a flaw in the go command\u0027s validation of module checksums to bypass checksum database validation. This vulnerability affects any user using an untrusted module proxy (GOMODPROXY) or checksum database (GOSUMDB). A malicious module proxy can serve altered versions of the Go toolchain. When selecting a different version of the Go toolchain than the currently installed toolchain (due to the GOTOOLCHAIN environment variable, or a go.work or go.mod with a toolchain line), the go command will download and execute a toolchain provided by the module proxy. A malicious module proxy can bypass checksum database validation for this downloaded toolchain. Since this vulnerability affects the security of toolchain downloads, setting GOTOOLCHAIN to a fixed version is not sufficient. You must upgrade your base Go toolchain. The go tool always validates the hash of a toolchain before executing it, so fixed versions will refuse to execute any cached, altered versions of the toolchain. The go tool trusts go.sum files to contain accurate hashes of the current module\u0027s dependencies. A malicious proxy exploiting this vulnerability to serve an altered module will have caused an incorrect hash to be recorded in the go.sum. Users who have configured a non-trusted GOPROXY can determine if they have been affected by running \"rm go.sum ; go mod tidy ; go mod verify\", which will revalidate all dependencies of the current module. The specific flaw in more detail: The go command consults the checksum database to validate downloaded modules, when a module is not listed in the go.sum file. It verifies that the module hash reported by the checksum database matches the hash of the downloaded module. If, however, the checksum database returns a successful response that contains no entry for the module, the go command incorrectly permitted validation to succeed. A module proxy may mirror or proxy the checksum database, in which case the go command will not connect to the checksum database directly. Checksums reported by the checksum database are cryptographically signed, so a malicious proxy cannot alter the reported checksum for a module. However, a proxy which returns an empty checksum response, or a checksum response for an unrelated module, could cause the go command to proceed as if a downloaded module has been validated.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42501",
"url": "https://www.suse.com/security/cve/CVE-2026-42501"
},
{
"category": "external",
"summary": "SUSE Bug 1264499 for CVE-2026-42501",
"url": "https://bugzilla.suse.com/1264499"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-race-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-doc-1.26.3-150000.1.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-race-1.26.3-150000.1.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-14T22:33:21Z",
"details": "important"
}
],
"title": "CVE-2026-42501"
}
]
}
SUSE-SU-2026:1862-1
Vulnerability from csaf_suse - Published: 2026-05-14 22:34 - Updated: 2026-05-14 22:34| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64 | — |
Vendor Fix
|
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for go1.25",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for go1.25 fixes the following issues\n\nSecurity issues:\n\n- CVE-2026-33811: net: crash when handling long CNAME response (bsc#1264508).\n- CVE-2026-33814: net/http: infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE (bsc#1264506).\n- CVE-2026-39817: cmd/go: \u0027go tool pack\u0027 does not sanitize output paths (bsc#1264505).\n- CVE-2026-39819: cmd/go: \u0027go bug\u0027 follows symlinks in predictable temporary filenames (bsc#1264504).\n- CVE-2026-39820: net/mail: quadratic string concatentation in consumeComment (bsc#1264503).\n- CVE-2026-39823: html/template: bypass of meta content URL escaping causes XSS (bsc#1264509).\n- CVE-2026-39825: net/http/httputil: ReverseProxy forwards queries with more than urlmaxqueryparams parameters\n (bsc#1264500).\n- CVE-2026-39826: html/template: escaper bypass leads to XSS (bsc#1264507).\n- CVE-2026-39836: net: panic in Dial and LookupPort when handling NUL byte on Windows (bsc#1264501).\n- CVE-2026-42499: net/mail: quadratic string concatenation in consumePhrase (bsc#1264502).\n- CVE-2026-42501: cmd/go: malicious module proxy can bypass checksum database (bsc#1264499).\n\nNon security issues:\n\n- Updated to go1.25.10 (bsc#1244485).\n- Go packages miss binutils-gold dependency (bsc#1170826).\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-1862,SUSE-SLE-Module-Development-Tools-15-SP7-2026-1862,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-1862,SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-1862,SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-1862,SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-1862,SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-1862,SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-1862,SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-1862,SUSE-SLE-Product-SLES_SAP-15-SP4-2026-1862,SUSE-SLE-Product-SLES_SAP-15-SP5-2026-1862,SUSE-SLE-Product-SLES_SAP-15-SP6-2026-1862",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_1862-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:1862-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261862-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:1862-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-May/046503.html"
},
{
"category": "self",
"summary": "SUSE Bug 1170826",
"url": "https://bugzilla.suse.com/1170826"
},
{
"category": "self",
"summary": "SUSE Bug 1244485",
"url": "https://bugzilla.suse.com/1244485"
},
{
"category": "self",
"summary": "SUSE Bug 1264499",
"url": "https://bugzilla.suse.com/1264499"
},
{
"category": "self",
"summary": "SUSE Bug 1264500",
"url": "https://bugzilla.suse.com/1264500"
},
{
"category": "self",
"summary": "SUSE Bug 1264501",
"url": "https://bugzilla.suse.com/1264501"
},
{
"category": "self",
"summary": "SUSE Bug 1264502",
"url": "https://bugzilla.suse.com/1264502"
},
{
"category": "self",
"summary": "SUSE Bug 1264503",
"url": "https://bugzilla.suse.com/1264503"
},
{
"category": "self",
"summary": "SUSE Bug 1264504",
"url": "https://bugzilla.suse.com/1264504"
},
{
"category": "self",
"summary": "SUSE Bug 1264505",
"url": "https://bugzilla.suse.com/1264505"
},
{
"category": "self",
"summary": "SUSE Bug 1264506",
"url": "https://bugzilla.suse.com/1264506"
},
{
"category": "self",
"summary": "SUSE Bug 1264507",
"url": "https://bugzilla.suse.com/1264507"
},
{
"category": "self",
"summary": "SUSE Bug 1264508",
"url": "https://bugzilla.suse.com/1264508"
},
{
"category": "self",
"summary": "SUSE Bug 1264509",
"url": "https://bugzilla.suse.com/1264509"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33811 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33811/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33814 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39817 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39817/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39819 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39819/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39820 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39820/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39823 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39823/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39825 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39825/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39826 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39826/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39836 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39836/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42499 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42499/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42501 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42501/"
}
],
"title": "Security update for go1.25",
"tracking": {
"current_release_date": "2026-05-14T22:34:20Z",
"generator": {
"date": "2026-05-14T22:34:20Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:1862-1",
"initial_release_date": "2026-05-14T22:34:20Z",
"revision_history": [
{
"date": "2026-05-14T22:34:20Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "go1.25-1.25.10-150000.1.38.1.aarch64",
"product": {
"name": "go1.25-1.25.10-150000.1.38.1.aarch64",
"product_id": "go1.25-1.25.10-150000.1.38.1.aarch64"
}
},
{
"category": "product_version",
"name": "go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"product": {
"name": "go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"product_id": "go1.25-doc-1.25.10-150000.1.38.1.aarch64"
}
},
{
"category": "product_version",
"name": "go1.25-race-1.25.10-150000.1.38.1.aarch64",
"product": {
"name": "go1.25-race-1.25.10-150000.1.38.1.aarch64",
"product_id": "go1.25-race-1.25.10-150000.1.38.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.25-1.25.10-150000.1.38.1.i586",
"product": {
"name": "go1.25-1.25.10-150000.1.38.1.i586",
"product_id": "go1.25-1.25.10-150000.1.38.1.i586"
}
},
{
"category": "product_version",
"name": "go1.25-doc-1.25.10-150000.1.38.1.i586",
"product": {
"name": "go1.25-doc-1.25.10-150000.1.38.1.i586",
"product_id": "go1.25-doc-1.25.10-150000.1.38.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.25-1.25.10-150000.1.38.1.ppc64le",
"product": {
"name": "go1.25-1.25.10-150000.1.38.1.ppc64le",
"product_id": "go1.25-1.25.10-150000.1.38.1.ppc64le"
}
},
{
"category": "product_version",
"name": "go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"product": {
"name": "go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"product_id": "go1.25-doc-1.25.10-150000.1.38.1.ppc64le"
}
},
{
"category": "product_version",
"name": "go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"product": {
"name": "go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"product_id": "go1.25-race-1.25.10-150000.1.38.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.25-1.25.10-150000.1.38.1.s390x",
"product": {
"name": "go1.25-1.25.10-150000.1.38.1.s390x",
"product_id": "go1.25-1.25.10-150000.1.38.1.s390x"
}
},
{
"category": "product_version",
"name": "go1.25-doc-1.25.10-150000.1.38.1.s390x",
"product": {
"name": "go1.25-doc-1.25.10-150000.1.38.1.s390x",
"product_id": "go1.25-doc-1.25.10-150000.1.38.1.s390x"
}
},
{
"category": "product_version",
"name": "go1.25-race-1.25.10-150000.1.38.1.s390x",
"product": {
"name": "go1.25-race-1.25.10-150000.1.38.1.s390x",
"product_id": "go1.25-race-1.25.10-150000.1.38.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.25-1.25.10-150000.1.38.1.x86_64",
"product": {
"name": "go1.25-1.25.10-150000.1.38.1.x86_64",
"product_id": "go1.25-1.25.10-150000.1.38.1.x86_64"
}
},
{
"category": "product_version",
"name": "go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"product": {
"name": "go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"product_id": "go1.25-doc-1.25.10-150000.1.38.1.x86_64"
}
},
{
"category": "product_version",
"name": "go1.25-race-1.25.10-150000.1.38.1.x86_64",
"product": {
"name": "go1.25-race-1.25.10-150000.1.38.1.x86_64",
"product_id": "go1.25-race-1.25.10-150000.1.38.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-development-tools:15:sp7"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP6-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.10-150000.1.38.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64"
},
"product_reference": "go1.25-1.25.10-150000.1.38.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.10-150000.1.38.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le"
},
"product_reference": "go1.25-1.25.10-150000.1.38.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.10-150000.1.38.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x"
},
"product_reference": "go1.25-1.25.10-150000.1.38.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.10-150000.1.38.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64"
},
"product_reference": "go1.25-1.25.10-150000.1.38.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.10-150000.1.38.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64"
},
"product_reference": "go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.10-150000.1.38.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le"
},
"product_reference": "go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.10-150000.1.38.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x"
},
"product_reference": "go1.25-doc-1.25.10-150000.1.38.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.10-150000.1.38.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64"
},
"product_reference": "go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.10-150000.1.38.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64"
},
"product_reference": "go1.25-race-1.25.10-150000.1.38.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.10-150000.1.38.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le"
},
"product_reference": "go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.10-150000.1.38.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x"
},
"product_reference": "go1.25-race-1.25.10-150000.1.38.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.10-150000.1.38.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64"
},
"product_reference": "go1.25-race-1.25.10-150000.1.38.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.10-150000.1.38.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64"
},
"product_reference": "go1.25-1.25.10-150000.1.38.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.10-150000.1.38.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64"
},
"product_reference": "go1.25-1.25.10-150000.1.38.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.10-150000.1.38.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64"
},
"product_reference": "go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.10-150000.1.38.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64"
},
"product_reference": "go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.10-150000.1.38.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64"
},
"product_reference": "go1.25-race-1.25.10-150000.1.38.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.10-150000.1.38.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64"
},
"product_reference": "go1.25-race-1.25.10-150000.1.38.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.10-150000.1.38.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64"
},
"product_reference": "go1.25-1.25.10-150000.1.38.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.10-150000.1.38.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64"
},
"product_reference": "go1.25-1.25.10-150000.1.38.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.10-150000.1.38.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64"
},
"product_reference": "go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.10-150000.1.38.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64"
},
"product_reference": "go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.10-150000.1.38.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64"
},
"product_reference": "go1.25-race-1.25.10-150000.1.38.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.10-150000.1.38.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64"
},
"product_reference": "go1.25-race-1.25.10-150000.1.38.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.10-150000.1.38.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64"
},
"product_reference": "go1.25-1.25.10-150000.1.38.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.10-150000.1.38.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64"
},
"product_reference": "go1.25-1.25.10-150000.1.38.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.10-150000.1.38.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64"
},
"product_reference": "go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.10-150000.1.38.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64"
},
"product_reference": "go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.10-150000.1.38.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64"
},
"product_reference": "go1.25-race-1.25.10-150000.1.38.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.10-150000.1.38.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64"
},
"product_reference": "go1.25-race-1.25.10-150000.1.38.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.10-150000.1.38.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64"
},
"product_reference": "go1.25-1.25.10-150000.1.38.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.10-150000.1.38.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64"
},
"product_reference": "go1.25-1.25.10-150000.1.38.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.10-150000.1.38.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64"
},
"product_reference": "go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.10-150000.1.38.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64"
},
"product_reference": "go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.10-150000.1.38.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64"
},
"product_reference": "go1.25-race-1.25.10-150000.1.38.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.10-150000.1.38.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64"
},
"product_reference": "go1.25-race-1.25.10-150000.1.38.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.10-150000.1.38.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64"
},
"product_reference": "go1.25-1.25.10-150000.1.38.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.10-150000.1.38.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le"
},
"product_reference": "go1.25-1.25.10-150000.1.38.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.10-150000.1.38.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x"
},
"product_reference": "go1.25-1.25.10-150000.1.38.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.10-150000.1.38.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64"
},
"product_reference": "go1.25-1.25.10-150000.1.38.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.10-150000.1.38.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64"
},
"product_reference": "go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.10-150000.1.38.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le"
},
"product_reference": "go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.10-150000.1.38.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x"
},
"product_reference": "go1.25-doc-1.25.10-150000.1.38.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.10-150000.1.38.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64"
},
"product_reference": "go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.10-150000.1.38.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64"
},
"product_reference": "go1.25-race-1.25.10-150000.1.38.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.10-150000.1.38.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le"
},
"product_reference": "go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.10-150000.1.38.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x"
},
"product_reference": "go1.25-race-1.25.10-150000.1.38.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.10-150000.1.38.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64"
},
"product_reference": "go1.25-race-1.25.10-150000.1.38.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.10-150000.1.38.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64"
},
"product_reference": "go1.25-1.25.10-150000.1.38.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.10-150000.1.38.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le"
},
"product_reference": "go1.25-1.25.10-150000.1.38.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.10-150000.1.38.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x"
},
"product_reference": "go1.25-1.25.10-150000.1.38.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.10-150000.1.38.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64"
},
"product_reference": "go1.25-1.25.10-150000.1.38.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.10-150000.1.38.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64"
},
"product_reference": "go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.10-150000.1.38.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le"
},
"product_reference": "go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.10-150000.1.38.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x"
},
"product_reference": "go1.25-doc-1.25.10-150000.1.38.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.10-150000.1.38.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64"
},
"product_reference": "go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.10-150000.1.38.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64"
},
"product_reference": "go1.25-race-1.25.10-150000.1.38.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.10-150000.1.38.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le"
},
"product_reference": "go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.10-150000.1.38.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x"
},
"product_reference": "go1.25-race-1.25.10-150000.1.38.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.10-150000.1.38.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64"
},
"product_reference": "go1.25-race-1.25.10-150000.1.38.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.10-150000.1.38.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64"
},
"product_reference": "go1.25-1.25.10-150000.1.38.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.10-150000.1.38.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le"
},
"product_reference": "go1.25-1.25.10-150000.1.38.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.10-150000.1.38.1.s390x as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x"
},
"product_reference": "go1.25-1.25.10-150000.1.38.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.10-150000.1.38.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64"
},
"product_reference": "go1.25-1.25.10-150000.1.38.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.10-150000.1.38.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64"
},
"product_reference": "go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.10-150000.1.38.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le"
},
"product_reference": "go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.10-150000.1.38.1.s390x as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x"
},
"product_reference": "go1.25-doc-1.25.10-150000.1.38.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.10-150000.1.38.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64"
},
"product_reference": "go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.10-150000.1.38.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64"
},
"product_reference": "go1.25-race-1.25.10-150000.1.38.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.10-150000.1.38.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le"
},
"product_reference": "go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.10-150000.1.38.1.s390x as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x"
},
"product_reference": "go1.25-race-1.25.10-150000.1.38.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.10-150000.1.38.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64"
},
"product_reference": "go1.25-race-1.25.10-150000.1.38.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.10-150000.1.38.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le"
},
"product_reference": "go1.25-1.25.10-150000.1.38.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.10-150000.1.38.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64"
},
"product_reference": "go1.25-1.25.10-150000.1.38.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.10-150000.1.38.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le"
},
"product_reference": "go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.10-150000.1.38.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64"
},
"product_reference": "go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.10-150000.1.38.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le"
},
"product_reference": "go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.10-150000.1.38.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64"
},
"product_reference": "go1.25-race-1.25.10-150000.1.38.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.10-150000.1.38.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le"
},
"product_reference": "go1.25-1.25.10-150000.1.38.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.10-150000.1.38.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64"
},
"product_reference": "go1.25-1.25.10-150000.1.38.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.10-150000.1.38.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le"
},
"product_reference": "go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.10-150000.1.38.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64"
},
"product_reference": "go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.10-150000.1.38.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le"
},
"product_reference": "go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.10-150000.1.38.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64"
},
"product_reference": "go1.25-race-1.25.10-150000.1.38.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.10-150000.1.38.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le"
},
"product_reference": "go1.25-1.25.10-150000.1.38.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-1.25.10-150000.1.38.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64"
},
"product_reference": "go1.25-1.25.10-150000.1.38.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.10-150000.1.38.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le"
},
"product_reference": "go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-doc-1.25.10-150000.1.38.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64"
},
"product_reference": "go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.10-150000.1.38.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le"
},
"product_reference": "go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-race-1.25.10-150000.1.38.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64"
},
"product_reference": "go1.25-race-1.25.10-150000.1.38.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-33811",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33811"
}
],
"notes": [
{
"category": "general",
"text": "When using LookupCNAME with the cgo DNS resolver, a very long CNAME response can trigger a double-free of C memory and a crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33811",
"url": "https://www.suse.com/security/cve/CVE-2026-33811"
},
{
"category": "external",
"summary": "SUSE Bug 1264508 for CVE-2026-33811",
"url": "https://bugzilla.suse.com/1264508"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-14T22:34:20Z",
"details": "important"
}
],
"title": "CVE-2026-33811"
},
{
"cve": "CVE-2026-33814",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33814"
}
],
"notes": [
{
"category": "general",
"text": "When processing HTTP/2 SETTINGS frames, transport will enter an infinite loop of writing CONTINUATION frames if it receives a SETTINGS_MAX_FRAME_SIZE with a value of 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33814",
"url": "https://www.suse.com/security/cve/CVE-2026-33814"
},
{
"category": "external",
"summary": "SUSE Bug 1264506 for CVE-2026-33814",
"url": "https://bugzilla.suse.com/1264506"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-14T22:34:20Z",
"details": "important"
}
],
"title": "CVE-2026-33814"
},
{
"cve": "CVE-2026-39817",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39817"
}
],
"notes": [
{
"category": "general",
"text": "The \"go tool pack\" subcommand (usually used only by the compiler as an internal tool with known-good inputs) does not sanitize output filenames. Extracting a malicious archive file with the \"pack\" subcommand can write files to arbitrary locations on the filesystem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39817",
"url": "https://www.suse.com/security/cve/CVE-2026-39817"
},
{
"category": "external",
"summary": "SUSE Bug 1264505 for CVE-2026-39817",
"url": "https://bugzilla.suse.com/1264505"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-14T22:34:20Z",
"details": "moderate"
}
],
"title": "CVE-2026-39817"
},
{
"cve": "CVE-2026-39819",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39819"
}
],
"notes": [
{
"category": "general",
"text": "The \"go bug\" command writes to two files with predictable names in the system temporary directory (for example, \"/tmp\"). An attacker with access to the temporary directory can create a symlink in one of these names, causing \"go bug\" to overwrite the target of the symlink.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39819",
"url": "https://www.suse.com/security/cve/CVE-2026-39819"
},
{
"category": "external",
"summary": "SUSE Bug 1264504 for CVE-2026-39819",
"url": "https://bugzilla.suse.com/1264504"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-14T22:34:20Z",
"details": "moderate"
}
],
"title": "CVE-2026-39819"
},
{
"cve": "CVE-2026-39820",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39820"
}
],
"notes": [
{
"category": "general",
"text": "Well-crafted inputs reaching ParseAddress, ParseAddressList, and ParseDate were able to trigger excessive CPU exhaustion and memory allocations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39820",
"url": "https://www.suse.com/security/cve/CVE-2026-39820"
},
{
"category": "external",
"summary": "SUSE Bug 1264503 for CVE-2026-39820",
"url": "https://bugzilla.suse.com/1264503"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-14T22:34:20Z",
"details": "important"
}
],
"title": "CVE-2026-39820"
},
{
"cve": "CVE-2026-39823",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39823"
}
],
"notes": [
{
"category": "general",
"text": "CVE-2026-27142 fixed a vulnerability in which URLs were not correctly escaped inside of a \u003cmeta\u003e tag\u0027s \u003ccontent\u003e attribute. If the URL content were to insert ASCII whitespaces around the \u0027=\u0027 rune inside of the \u003ccontent\u003e attribute, the escaper would fail to similarly escape it, leading to XSS.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39823",
"url": "https://www.suse.com/security/cve/CVE-2026-39823"
},
{
"category": "external",
"summary": "SUSE Bug 1264509 for CVE-2026-39823",
"url": "https://bugzilla.suse.com/1264509"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-14T22:34:20Z",
"details": "moderate"
}
],
"title": "CVE-2026-39823"
},
{
"cve": "CVE-2026-39825",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39825"
}
],
"notes": [
{
"category": "general",
"text": "ReverseProxy can forward queries containing parameters not visible to Rewrite functions. When used with a Rewrite function, or a Director function which parses query parameters, ReverseProxy sanitizes the forwarded request to remove query parameters which are not parsed by url.ParseQuery. ReverseProxy does not take ParseQuery\u0027s limit on the total number of query parameters (controlled by GODEBUG=urlmaxqueryparams=N) into account. This can permit ReverseProxy to forward a request containing a query parameter that is not visible to the Rewrite function. For example, the query \"a1=x\u0026a2=x\u0026...\u0026a10000=x\u0026hidden=y\" can forward the parameter \"hidden=y\" while hiding it from the proxy\u0027s Rewrite function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39825",
"url": "https://www.suse.com/security/cve/CVE-2026-39825"
},
{
"category": "external",
"summary": "SUSE Bug 1264500 for CVE-2026-39825",
"url": "https://bugzilla.suse.com/1264500"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-14T22:34:20Z",
"details": "moderate"
}
],
"title": "CVE-2026-39825"
},
{
"cve": "CVE-2026-39826",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39826"
}
],
"notes": [
{
"category": "general",
"text": "If a trusted template author were to write a \u003cscript\u003e tag containing an empty \u0027type\u0027 attribute or a \u0027type\u0027 attribute with an ASCII whitespace, the execution of the template would incorrectly escape any data passed into the \u003cscript\u003e block.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39826",
"url": "https://www.suse.com/security/cve/CVE-2026-39826"
},
{
"category": "external",
"summary": "SUSE Bug 1264507 for CVE-2026-39826",
"url": "https://bugzilla.suse.com/1264507"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-14T22:34:20Z",
"details": "moderate"
}
],
"title": "CVE-2026-39826"
},
{
"cve": "CVE-2026-39836",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39836"
}
],
"notes": [
{
"category": "general",
"text": "The Dial and LookupPort functions panic on Windows when provided with an input containing a NUL (0).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39836",
"url": "https://www.suse.com/security/cve/CVE-2026-39836"
},
{
"category": "external",
"summary": "SUSE Bug 1264501 for CVE-2026-39836",
"url": "https://bugzilla.suse.com/1264501"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-14T22:34:20Z",
"details": "important"
}
],
"title": "CVE-2026-39836"
},
{
"cve": "CVE-2026-42499",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42499"
}
],
"notes": [
{
"category": "general",
"text": "Pathological inputs could cause DoS through consumePhrase when parsing an email address according to RFC 5322.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42499",
"url": "https://www.suse.com/security/cve/CVE-2026-42499"
},
{
"category": "external",
"summary": "SUSE Bug 1264502 for CVE-2026-42499",
"url": "https://bugzilla.suse.com/1264502"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-14T22:34:20Z",
"details": "important"
}
],
"title": "CVE-2026-42499"
},
{
"cve": "CVE-2026-42501",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42501"
}
],
"notes": [
{
"category": "general",
"text": "A malicious module proxy can exploit a flaw in the go command\u0027s validation of module checksums to bypass checksum database validation. This vulnerability affects any user using an untrusted module proxy (GOMODPROXY) or checksum database (GOSUMDB). A malicious module proxy can serve altered versions of the Go toolchain. When selecting a different version of the Go toolchain than the currently installed toolchain (due to the GOTOOLCHAIN environment variable, or a go.work or go.mod with a toolchain line), the go command will download and execute a toolchain provided by the module proxy. A malicious module proxy can bypass checksum database validation for this downloaded toolchain. Since this vulnerability affects the security of toolchain downloads, setting GOTOOLCHAIN to a fixed version is not sufficient. You must upgrade your base Go toolchain. The go tool always validates the hash of a toolchain before executing it, so fixed versions will refuse to execute any cached, altered versions of the toolchain. The go tool trusts go.sum files to contain accurate hashes of the current module\u0027s dependencies. A malicious proxy exploiting this vulnerability to serve an altered module will have caused an incorrect hash to be recorded in the go.sum. Users who have configured a non-trusted GOPROXY can determine if they have been affected by running \"rm go.sum ; go mod tidy ; go mod verify\", which will revalidate all dependencies of the current module. The specific flaw in more detail: The go command consults the checksum database to validate downloaded modules, when a module is not listed in the go.sum file. It verifies that the module hash reported by the checksum database matches the hash of the downloaded module. If, however, the checksum database returns a successful response that contains no entry for the module, the go command incorrectly permitted validation to succeed. A module proxy may mirror or proxy the checksum database, in which case the go command will not connect to the checksum database directly. Checksums reported by the checksum database are cryptographically signed, so a malicious proxy cannot alter the reported checksum for a module. However, a proxy which returns an empty checksum response, or a checksum response for an unrelated module, could cause the go command to proceed as if a downloaded module has been validated.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42501",
"url": "https://www.suse.com/security/cve/CVE-2026-42501"
},
{
"category": "external",
"summary": "SUSE Bug 1264499 for CVE-2026-42501",
"url": "https://bugzilla.suse.com/1264499"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-race-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-doc-1.25.10-150000.1.38.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-race-1.25.10-150000.1.38.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-14T22:34:20Z",
"details": "important"
}
],
"title": "CVE-2026-42501"
}
]
}
SUSE-SU-2026:2078-1
Vulnerability from csaf_suse - Published: 2026-05-26 14:54 - Updated: 2026-05-26 14:54| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 | — |
Vendor Fix
|
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for go1.26-openssl",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for go1.26-openssl fixes the following issues\n\nSecurity issues:\n\n- CVE-2026-33811: net: crash when handling long CNAME response (bsc#1264508).\n- CVE-2026-33814: net/http: infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE (bsc#1264506).\n- CVE-2026-39817: cmd/go: \u0027go tool pack\u0027 does not sanitize output paths (bsc#1264505).\n- CVE-2026-39819: cmd/go: \u0027go bug\u0027 follows symlinks in predictable temporary filenames (bsc#1264504).\n- CVE-2026-39820: net/mail: quadratic string concatentation in consumeComment (bsc#1264503).\n- CVE-2026-39823: html/template: bypass of meta content URL escaping causes XSS (bsc#1264509).\n- CVE-2026-39825: net/http/httputil: ReverseProxy forwards queries with more than urlmaxqueryparams parameters\n (bsc#1264500).\n- CVE-2026-39826: html/template: escaper bypass leads to XSS (bsc#1264507).\n- CVE-2026-39836: net: panic in Dial and LookupPort when handling NUL byte on Windows (bsc#1264501).\n- CVE-2026-42499: net/mail: quadratic string concatenation in consumePhrase (bsc#1264502).\n- CVE-2026-42501: cmd/go: malicious module proxy can bypass checksum database (bsc#1264499).\n\nNon security issues:\n\n- go1.26 release tracking (bsc#1255111).\n- Go packages miss binutils-gold dependency (bsc#1170826).\n- supply a go built with openssl linkage (jsc#SLE-18320).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-2078,SUSE-SLE-Module-Development-Tools-15-SP7-2026-2078,SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2078,SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2078",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_2078-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:2078-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262078-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:2078-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-May/046773.html"
},
{
"category": "self",
"summary": "SUSE Bug 1170826",
"url": "https://bugzilla.suse.com/1170826"
},
{
"category": "self",
"summary": "SUSE Bug 1255111",
"url": "https://bugzilla.suse.com/1255111"
},
{
"category": "self",
"summary": "SUSE Bug 1264499",
"url": "https://bugzilla.suse.com/1264499"
},
{
"category": "self",
"summary": "SUSE Bug 1264500",
"url": "https://bugzilla.suse.com/1264500"
},
{
"category": "self",
"summary": "SUSE Bug 1264501",
"url": "https://bugzilla.suse.com/1264501"
},
{
"category": "self",
"summary": "SUSE Bug 1264502",
"url": "https://bugzilla.suse.com/1264502"
},
{
"category": "self",
"summary": "SUSE Bug 1264503",
"url": "https://bugzilla.suse.com/1264503"
},
{
"category": "self",
"summary": "SUSE Bug 1264504",
"url": "https://bugzilla.suse.com/1264504"
},
{
"category": "self",
"summary": "SUSE Bug 1264505",
"url": "https://bugzilla.suse.com/1264505"
},
{
"category": "self",
"summary": "SUSE Bug 1264506",
"url": "https://bugzilla.suse.com/1264506"
},
{
"category": "self",
"summary": "SUSE Bug 1264507",
"url": "https://bugzilla.suse.com/1264507"
},
{
"category": "self",
"summary": "SUSE Bug 1264508",
"url": "https://bugzilla.suse.com/1264508"
},
{
"category": "self",
"summary": "SUSE Bug 1264509",
"url": "https://bugzilla.suse.com/1264509"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33811 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33811/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33814 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39817 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39817/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39819 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39819/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39820 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39820/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39823 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39823/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39825 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39825/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39826 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39826/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39836 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39836/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42499 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42499/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42501 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42501/"
}
],
"title": "Security update for go1.26-openssl",
"tracking": {
"current_release_date": "2026-05-26T14:54:11Z",
"generator": {
"date": "2026-05-26T14:54:11Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:2078-1",
"initial_release_date": "2026-05-26T14:54:11Z",
"revision_history": [
{
"date": "2026-05-26T14:54:11Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"product": {
"name": "go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"product_id": "go1.26-openssl-1.26.3-150600.13.6.1.aarch64"
}
},
{
"category": "product_version",
"name": "go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"product": {
"name": "go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"product_id": "go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64"
}
},
{
"category": "product_version",
"name": "go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"product": {
"name": "go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"product_id": "go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.26-openssl-1.26.3-150600.13.6.1.i586",
"product": {
"name": "go1.26-openssl-1.26.3-150600.13.6.1.i586",
"product_id": "go1.26-openssl-1.26.3-150600.13.6.1.i586"
}
},
{
"category": "product_version",
"name": "go1.26-openssl-doc-1.26.3-150600.13.6.1.i586",
"product": {
"name": "go1.26-openssl-doc-1.26.3-150600.13.6.1.i586",
"product_id": "go1.26-openssl-doc-1.26.3-150600.13.6.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"product": {
"name": "go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"product_id": "go1.26-openssl-1.26.3-150600.13.6.1.ppc64le"
}
},
{
"category": "product_version",
"name": "go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"product": {
"name": "go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"product_id": "go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le"
}
},
{
"category": "product_version",
"name": "go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"product": {
"name": "go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"product_id": "go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"product": {
"name": "go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"product_id": "go1.26-openssl-1.26.3-150600.13.6.1.s390x"
}
},
{
"category": "product_version",
"name": "go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"product": {
"name": "go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"product_id": "go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x"
}
},
{
"category": "product_version",
"name": "go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"product": {
"name": "go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"product_id": "go1.26-openssl-race-1.26.3-150600.13.6.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"product": {
"name": "go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"product_id": "go1.26-openssl-1.26.3-150600.13.6.1.x86_64"
}
},
{
"category": "product_version",
"name": "go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"product": {
"name": "go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"product_id": "go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64"
}
},
{
"category": "product_version",
"name": "go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"product": {
"name": "go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"product_id": "go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-development-tools:15:sp7"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP6-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.3-150600.13.6.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64"
},
"product_reference": "go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.3-150600.13.6.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le"
},
"product_reference": "go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.3-150600.13.6.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x"
},
"product_reference": "go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.3-150600.13.6.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64"
},
"product_reference": "go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64"
},
"product_reference": "go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le"
},
"product_reference": "go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x"
},
"product_reference": "go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64"
},
"product_reference": "go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64"
},
"product_reference": "go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le"
},
"product_reference": "go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.3-150600.13.6.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x"
},
"product_reference": "go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
},
"product_reference": "go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.3-150600.13.6.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64"
},
"product_reference": "go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.3-150600.13.6.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le"
},
"product_reference": "go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.3-150600.13.6.1.s390x as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x"
},
"product_reference": "go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.3-150600.13.6.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64"
},
"product_reference": "go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64"
},
"product_reference": "go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le"
},
"product_reference": "go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x"
},
"product_reference": "go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64"
},
"product_reference": "go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64"
},
"product_reference": "go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le"
},
"product_reference": "go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.3-150600.13.6.1.s390x as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x"
},
"product_reference": "go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
},
"product_reference": "go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.3-150600.13.6.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le"
},
"product_reference": "go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.3-150600.13.6.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64"
},
"product_reference": "go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le"
},
"product_reference": "go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64"
},
"product_reference": "go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le"
},
"product_reference": "go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
},
"product_reference": "go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-33811",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33811"
}
],
"notes": [
{
"category": "general",
"text": "When using LookupCNAME with the cgo DNS resolver, a very long CNAME response can trigger a double-free of C memory and a crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33811",
"url": "https://www.suse.com/security/cve/CVE-2026-33811"
},
{
"category": "external",
"summary": "SUSE Bug 1264508 for CVE-2026-33811",
"url": "https://bugzilla.suse.com/1264508"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-26T14:54:11Z",
"details": "important"
}
],
"title": "CVE-2026-33811"
},
{
"cve": "CVE-2026-33814",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33814"
}
],
"notes": [
{
"category": "general",
"text": "When processing HTTP/2 SETTINGS frames, transport will enter an infinite loop of writing CONTINUATION frames if it receives a SETTINGS_MAX_FRAME_SIZE with a value of 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33814",
"url": "https://www.suse.com/security/cve/CVE-2026-33814"
},
{
"category": "external",
"summary": "SUSE Bug 1264506 for CVE-2026-33814",
"url": "https://bugzilla.suse.com/1264506"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-26T14:54:11Z",
"details": "important"
}
],
"title": "CVE-2026-33814"
},
{
"cve": "CVE-2026-39817",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39817"
}
],
"notes": [
{
"category": "general",
"text": "The \"go tool pack\" subcommand (usually used only by the compiler as an internal tool with known-good inputs) does not sanitize output filenames. Extracting a malicious archive file with the \"pack\" subcommand can write files to arbitrary locations on the filesystem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39817",
"url": "https://www.suse.com/security/cve/CVE-2026-39817"
},
{
"category": "external",
"summary": "SUSE Bug 1264505 for CVE-2026-39817",
"url": "https://bugzilla.suse.com/1264505"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-26T14:54:11Z",
"details": "moderate"
}
],
"title": "CVE-2026-39817"
},
{
"cve": "CVE-2026-39819",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39819"
}
],
"notes": [
{
"category": "general",
"text": "The \"go bug\" command writes to two files with predictable names in the system temporary directory (for example, \"/tmp\"). An attacker with access to the temporary directory can create a symlink in one of these names, causing \"go bug\" to overwrite the target of the symlink.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39819",
"url": "https://www.suse.com/security/cve/CVE-2026-39819"
},
{
"category": "external",
"summary": "SUSE Bug 1264504 for CVE-2026-39819",
"url": "https://bugzilla.suse.com/1264504"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-26T14:54:11Z",
"details": "moderate"
}
],
"title": "CVE-2026-39819"
},
{
"cve": "CVE-2026-39820",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39820"
}
],
"notes": [
{
"category": "general",
"text": "Well-crafted inputs reaching ParseAddress, ParseAddressList, and ParseDate were able to trigger excessive CPU exhaustion and memory allocations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39820",
"url": "https://www.suse.com/security/cve/CVE-2026-39820"
},
{
"category": "external",
"summary": "SUSE Bug 1264503 for CVE-2026-39820",
"url": "https://bugzilla.suse.com/1264503"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-26T14:54:11Z",
"details": "important"
}
],
"title": "CVE-2026-39820"
},
{
"cve": "CVE-2026-39823",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39823"
}
],
"notes": [
{
"category": "general",
"text": "CVE-2026-27142 fixed a vulnerability in which URLs were not correctly escaped inside of a \u003cmeta\u003e tag\u0027s \u003ccontent\u003e attribute. If the URL content were to insert ASCII whitespaces around the \u0027=\u0027 rune inside of the \u003ccontent\u003e attribute, the escaper would fail to similarly escape it, leading to XSS.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39823",
"url": "https://www.suse.com/security/cve/CVE-2026-39823"
},
{
"category": "external",
"summary": "SUSE Bug 1264509 for CVE-2026-39823",
"url": "https://bugzilla.suse.com/1264509"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-26T14:54:11Z",
"details": "moderate"
}
],
"title": "CVE-2026-39823"
},
{
"cve": "CVE-2026-39825",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39825"
}
],
"notes": [
{
"category": "general",
"text": "ReverseProxy can forward queries containing parameters not visible to Rewrite functions. When used with a Rewrite function, or a Director function which parses query parameters, ReverseProxy sanitizes the forwarded request to remove query parameters which are not parsed by url.ParseQuery. ReverseProxy does not take ParseQuery\u0027s limit on the total number of query parameters (controlled by GODEBUG=urlmaxqueryparams=N) into account. This can permit ReverseProxy to forward a request containing a query parameter that is not visible to the Rewrite function. For example, the query \"a1=x\u0026a2=x\u0026...\u0026a10000=x\u0026hidden=y\" can forward the parameter \"hidden=y\" while hiding it from the proxy\u0027s Rewrite function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39825",
"url": "https://www.suse.com/security/cve/CVE-2026-39825"
},
{
"category": "external",
"summary": "SUSE Bug 1264500 for CVE-2026-39825",
"url": "https://bugzilla.suse.com/1264500"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-26T14:54:11Z",
"details": "moderate"
}
],
"title": "CVE-2026-39825"
},
{
"cve": "CVE-2026-39826",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39826"
}
],
"notes": [
{
"category": "general",
"text": "If a trusted template author were to write a \u003cscript\u003e tag containing an empty \u0027type\u0027 attribute or a \u0027type\u0027 attribute with an ASCII whitespace, the execution of the template would incorrectly escape any data passed into the \u003cscript\u003e block.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39826",
"url": "https://www.suse.com/security/cve/CVE-2026-39826"
},
{
"category": "external",
"summary": "SUSE Bug 1264507 for CVE-2026-39826",
"url": "https://bugzilla.suse.com/1264507"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-26T14:54:11Z",
"details": "moderate"
}
],
"title": "CVE-2026-39826"
},
{
"cve": "CVE-2026-39836",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39836"
}
],
"notes": [
{
"category": "general",
"text": "The Dial and LookupPort functions panic on Windows when provided with an input containing a NUL (0).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39836",
"url": "https://www.suse.com/security/cve/CVE-2026-39836"
},
{
"category": "external",
"summary": "SUSE Bug 1264501 for CVE-2026-39836",
"url": "https://bugzilla.suse.com/1264501"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-26T14:54:11Z",
"details": "important"
}
],
"title": "CVE-2026-39836"
},
{
"cve": "CVE-2026-42499",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42499"
}
],
"notes": [
{
"category": "general",
"text": "Pathological inputs could cause DoS through consumePhrase when parsing an email address according to RFC 5322.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42499",
"url": "https://www.suse.com/security/cve/CVE-2026-42499"
},
{
"category": "external",
"summary": "SUSE Bug 1264502 for CVE-2026-42499",
"url": "https://bugzilla.suse.com/1264502"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-26T14:54:11Z",
"details": "important"
}
],
"title": "CVE-2026-42499"
},
{
"cve": "CVE-2026-42501",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42501"
}
],
"notes": [
{
"category": "general",
"text": "A malicious module proxy can exploit a flaw in the go command\u0027s validation of module checksums to bypass checksum database validation. This vulnerability affects any user using an untrusted module proxy (GOMODPROXY) or checksum database (GOSUMDB). A malicious module proxy can serve altered versions of the Go toolchain. When selecting a different version of the Go toolchain than the currently installed toolchain (due to the GOTOOLCHAIN environment variable, or a go.work or go.mod with a toolchain line), the go command will download and execute a toolchain provided by the module proxy. A malicious module proxy can bypass checksum database validation for this downloaded toolchain. Since this vulnerability affects the security of toolchain downloads, setting GOTOOLCHAIN to a fixed version is not sufficient. You must upgrade your base Go toolchain. The go tool always validates the hash of a toolchain before executing it, so fixed versions will refuse to execute any cached, altered versions of the toolchain. The go tool trusts go.sum files to contain accurate hashes of the current module\u0027s dependencies. A malicious proxy exploiting this vulnerability to serve an altered module will have caused an incorrect hash to be recorded in the go.sum. Users who have configured a non-trusted GOPROXY can determine if they have been affected by running \"rm go.sum ; go mod tidy ; go mod verify\", which will revalidate all dependencies of the current module. The specific flaw in more detail: The go command consults the checksum database to validate downloaded modules, when a module is not listed in the go.sum file. It verifies that the module hash reported by the checksum database matches the hash of the downloaded module. If, however, the checksum database returns a successful response that contains no entry for the module, the go command incorrectly permitted validation to succeed. A module proxy may mirror or proxy the checksum database, in which case the go command will not connect to the checksum database directly. Checksums reported by the checksum database are cryptographically signed, so a malicious proxy cannot alter the reported checksum for a module. However, a proxy which returns an empty checksum response, or a checksum response for an unrelated module, could cause the go command to proceed as if a downloaded module has been validated.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42501",
"url": "https://www.suse.com/security/cve/CVE-2026-42501"
},
{
"category": "external",
"summary": "SUSE Bug 1264499 for CVE-2026-42501",
"url": "https://bugzilla.suse.com/1264499"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-doc-1.26.3-150600.13.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.26-openssl-race-1.26.3-150600.13.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-26T14:54:11Z",
"details": "important"
}
],
"title": "CVE-2026-42501"
}
]
}
SUSE-SU-2026:2079-1
Vulnerability from csaf_suse - Published: 2026-05-26 14:54 - Updated: 2026-05-26 14:54| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 | — |
Vendor Fix
|
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for go1.25-openssl",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for go1.25-openssl fixes the following issues\n\nSecurity issues:\n\n- CVE-2026-33811: net: crash when handling long CNAME response (bsc#1264508).\n- CVE-2026-33814: net/http: infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE (bsc#1264506).\n- CVE-2026-39817: cmd/go: \u0027go tool pack\u0027 does not sanitize output paths (bsc#1264505).\n- CVE-2026-39819: cmd/go: \u0027go bug\u0027 follows symlinks in predictable temporary filenames (bsc#1264504).\n- CVE-2026-39820: net/mail: quadratic string concatentation in consumeComment (bsc#1264503).\n- CVE-2026-39823: html/template: bypass of meta content URL escaping causes XSS (bsc#1264509).\n- CVE-2026-39825: net/http/httputil: ReverseProxy forwards queries with more than urlmaxqueryparams parameters\n (bsc#1264500).\n- CVE-2026-39826: html/template: escaper bypass leads to XSS (bsc#1264507).\n- CVE-2026-39836: net: panic in Dial and LookupPort when handling NUL byte on Windows (bsc#1264501).\n- CVE-2026-42499: net/mail: quadratic string concatenation in consumePhrase (bsc#1264502).\n- CVE-2026-42501: cmd/go: malicious module proxy can bypass checksum database (bsc#1264499).\n\nNon security issues:\n\n- go1.25 release tracking (bsc#1244485).\n- Go packages miss binutils-gold dependency (bsc#1170826).\n- supply a go built with openssl linkage (jsc#SLE-18320).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-2079,SUSE-SLE-Module-Development-Tools-15-SP7-2026-2079,SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2079,SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2079",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_2079-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:2079-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262079-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:2079-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-May/046772.html"
},
{
"category": "self",
"summary": "SUSE Bug 1170826",
"url": "https://bugzilla.suse.com/1170826"
},
{
"category": "self",
"summary": "SUSE Bug 1244485",
"url": "https://bugzilla.suse.com/1244485"
},
{
"category": "self",
"summary": "SUSE Bug 1264499",
"url": "https://bugzilla.suse.com/1264499"
},
{
"category": "self",
"summary": "SUSE Bug 1264500",
"url": "https://bugzilla.suse.com/1264500"
},
{
"category": "self",
"summary": "SUSE Bug 1264501",
"url": "https://bugzilla.suse.com/1264501"
},
{
"category": "self",
"summary": "SUSE Bug 1264502",
"url": "https://bugzilla.suse.com/1264502"
},
{
"category": "self",
"summary": "SUSE Bug 1264503",
"url": "https://bugzilla.suse.com/1264503"
},
{
"category": "self",
"summary": "SUSE Bug 1264504",
"url": "https://bugzilla.suse.com/1264504"
},
{
"category": "self",
"summary": "SUSE Bug 1264505",
"url": "https://bugzilla.suse.com/1264505"
},
{
"category": "self",
"summary": "SUSE Bug 1264506",
"url": "https://bugzilla.suse.com/1264506"
},
{
"category": "self",
"summary": "SUSE Bug 1264507",
"url": "https://bugzilla.suse.com/1264507"
},
{
"category": "self",
"summary": "SUSE Bug 1264508",
"url": "https://bugzilla.suse.com/1264508"
},
{
"category": "self",
"summary": "SUSE Bug 1264509",
"url": "https://bugzilla.suse.com/1264509"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33811 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33811/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33814 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39817 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39817/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39819 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39819/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39820 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39820/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39823 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39823/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39825 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39825/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39826 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39826/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39836 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39836/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42499 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42499/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42501 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42501/"
}
],
"title": "Security update for go1.25-openssl",
"tracking": {
"current_release_date": "2026-05-26T14:54:34Z",
"generator": {
"date": "2026-05-26T14:54:34Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:2079-1",
"initial_release_date": "2026-05-26T14:54:34Z",
"revision_history": [
{
"date": "2026-05-26T14:54:34Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"product": {
"name": "go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"product_id": "go1.25-openssl-1.25.10-150600.13.18.1.aarch64"
}
},
{
"category": "product_version",
"name": "go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"product": {
"name": "go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"product_id": "go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64"
}
},
{
"category": "product_version",
"name": "go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"product": {
"name": "go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"product_id": "go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.25-openssl-1.25.10-150600.13.18.1.i586",
"product": {
"name": "go1.25-openssl-1.25.10-150600.13.18.1.i586",
"product_id": "go1.25-openssl-1.25.10-150600.13.18.1.i586"
}
},
{
"category": "product_version",
"name": "go1.25-openssl-doc-1.25.10-150600.13.18.1.i586",
"product": {
"name": "go1.25-openssl-doc-1.25.10-150600.13.18.1.i586",
"product_id": "go1.25-openssl-doc-1.25.10-150600.13.18.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"product": {
"name": "go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"product_id": "go1.25-openssl-1.25.10-150600.13.18.1.ppc64le"
}
},
{
"category": "product_version",
"name": "go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"product": {
"name": "go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"product_id": "go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le"
}
},
{
"category": "product_version",
"name": "go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"product": {
"name": "go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"product_id": "go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"product": {
"name": "go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"product_id": "go1.25-openssl-1.25.10-150600.13.18.1.s390x"
}
},
{
"category": "product_version",
"name": "go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"product": {
"name": "go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"product_id": "go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x"
}
},
{
"category": "product_version",
"name": "go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"product": {
"name": "go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"product_id": "go1.25-openssl-race-1.25.10-150600.13.18.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"product": {
"name": "go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"product_id": "go1.25-openssl-1.25.10-150600.13.18.1.x86_64"
}
},
{
"category": "product_version",
"name": "go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"product": {
"name": "go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"product_id": "go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64"
}
},
{
"category": "product_version",
"name": "go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"product": {
"name": "go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"product_id": "go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-development-tools:15:sp7"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP6-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-1.25.10-150600.13.18.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64"
},
"product_reference": "go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-1.25.10-150600.13.18.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le"
},
"product_reference": "go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-1.25.10-150600.13.18.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x"
},
"product_reference": "go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-1.25.10-150600.13.18.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64"
},
"product_reference": "go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64"
},
"product_reference": "go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le"
},
"product_reference": "go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x"
},
"product_reference": "go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64"
},
"product_reference": "go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64"
},
"product_reference": "go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le"
},
"product_reference": "go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-race-1.25.10-150600.13.18.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x"
},
"product_reference": "go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
},
"product_reference": "go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-1.25.10-150600.13.18.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64"
},
"product_reference": "go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-1.25.10-150600.13.18.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le"
},
"product_reference": "go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-1.25.10-150600.13.18.1.s390x as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x"
},
"product_reference": "go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-1.25.10-150600.13.18.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64"
},
"product_reference": "go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64"
},
"product_reference": "go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le"
},
"product_reference": "go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x"
},
"product_reference": "go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64"
},
"product_reference": "go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64"
},
"product_reference": "go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le"
},
"product_reference": "go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-race-1.25.10-150600.13.18.1.s390x as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x"
},
"product_reference": "go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
},
"product_reference": "go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-1.25.10-150600.13.18.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le"
},
"product_reference": "go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-1.25.10-150600.13.18.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64"
},
"product_reference": "go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le"
},
"product_reference": "go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64"
},
"product_reference": "go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le"
},
"product_reference": "go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
},
"product_reference": "go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-33811",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33811"
}
],
"notes": [
{
"category": "general",
"text": "When using LookupCNAME with the cgo DNS resolver, a very long CNAME response can trigger a double-free of C memory and a crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33811",
"url": "https://www.suse.com/security/cve/CVE-2026-33811"
},
{
"category": "external",
"summary": "SUSE Bug 1264508 for CVE-2026-33811",
"url": "https://bugzilla.suse.com/1264508"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-26T14:54:34Z",
"details": "important"
}
],
"title": "CVE-2026-33811"
},
{
"cve": "CVE-2026-33814",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33814"
}
],
"notes": [
{
"category": "general",
"text": "When processing HTTP/2 SETTINGS frames, transport will enter an infinite loop of writing CONTINUATION frames if it receives a SETTINGS_MAX_FRAME_SIZE with a value of 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33814",
"url": "https://www.suse.com/security/cve/CVE-2026-33814"
},
{
"category": "external",
"summary": "SUSE Bug 1264506 for CVE-2026-33814",
"url": "https://bugzilla.suse.com/1264506"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-26T14:54:34Z",
"details": "important"
}
],
"title": "CVE-2026-33814"
},
{
"cve": "CVE-2026-39817",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39817"
}
],
"notes": [
{
"category": "general",
"text": "The \"go tool pack\" subcommand (usually used only by the compiler as an internal tool with known-good inputs) does not sanitize output filenames. Extracting a malicious archive file with the \"pack\" subcommand can write files to arbitrary locations on the filesystem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39817",
"url": "https://www.suse.com/security/cve/CVE-2026-39817"
},
{
"category": "external",
"summary": "SUSE Bug 1264505 for CVE-2026-39817",
"url": "https://bugzilla.suse.com/1264505"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-26T14:54:34Z",
"details": "moderate"
}
],
"title": "CVE-2026-39817"
},
{
"cve": "CVE-2026-39819",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39819"
}
],
"notes": [
{
"category": "general",
"text": "The \"go bug\" command writes to two files with predictable names in the system temporary directory (for example, \"/tmp\"). An attacker with access to the temporary directory can create a symlink in one of these names, causing \"go bug\" to overwrite the target of the symlink.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39819",
"url": "https://www.suse.com/security/cve/CVE-2026-39819"
},
{
"category": "external",
"summary": "SUSE Bug 1264504 for CVE-2026-39819",
"url": "https://bugzilla.suse.com/1264504"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-26T14:54:34Z",
"details": "moderate"
}
],
"title": "CVE-2026-39819"
},
{
"cve": "CVE-2026-39820",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39820"
}
],
"notes": [
{
"category": "general",
"text": "Well-crafted inputs reaching ParseAddress, ParseAddressList, and ParseDate were able to trigger excessive CPU exhaustion and memory allocations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39820",
"url": "https://www.suse.com/security/cve/CVE-2026-39820"
},
{
"category": "external",
"summary": "SUSE Bug 1264503 for CVE-2026-39820",
"url": "https://bugzilla.suse.com/1264503"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-26T14:54:34Z",
"details": "important"
}
],
"title": "CVE-2026-39820"
},
{
"cve": "CVE-2026-39823",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39823"
}
],
"notes": [
{
"category": "general",
"text": "CVE-2026-27142 fixed a vulnerability in which URLs were not correctly escaped inside of a \u003cmeta\u003e tag\u0027s \u003ccontent\u003e attribute. If the URL content were to insert ASCII whitespaces around the \u0027=\u0027 rune inside of the \u003ccontent\u003e attribute, the escaper would fail to similarly escape it, leading to XSS.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39823",
"url": "https://www.suse.com/security/cve/CVE-2026-39823"
},
{
"category": "external",
"summary": "SUSE Bug 1264509 for CVE-2026-39823",
"url": "https://bugzilla.suse.com/1264509"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-26T14:54:34Z",
"details": "moderate"
}
],
"title": "CVE-2026-39823"
},
{
"cve": "CVE-2026-39825",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39825"
}
],
"notes": [
{
"category": "general",
"text": "ReverseProxy can forward queries containing parameters not visible to Rewrite functions. When used with a Rewrite function, or a Director function which parses query parameters, ReverseProxy sanitizes the forwarded request to remove query parameters which are not parsed by url.ParseQuery. ReverseProxy does not take ParseQuery\u0027s limit on the total number of query parameters (controlled by GODEBUG=urlmaxqueryparams=N) into account. This can permit ReverseProxy to forward a request containing a query parameter that is not visible to the Rewrite function. For example, the query \"a1=x\u0026a2=x\u0026...\u0026a10000=x\u0026hidden=y\" can forward the parameter \"hidden=y\" while hiding it from the proxy\u0027s Rewrite function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39825",
"url": "https://www.suse.com/security/cve/CVE-2026-39825"
},
{
"category": "external",
"summary": "SUSE Bug 1264500 for CVE-2026-39825",
"url": "https://bugzilla.suse.com/1264500"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-26T14:54:34Z",
"details": "moderate"
}
],
"title": "CVE-2026-39825"
},
{
"cve": "CVE-2026-39826",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39826"
}
],
"notes": [
{
"category": "general",
"text": "If a trusted template author were to write a \u003cscript\u003e tag containing an empty \u0027type\u0027 attribute or a \u0027type\u0027 attribute with an ASCII whitespace, the execution of the template would incorrectly escape any data passed into the \u003cscript\u003e block.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39826",
"url": "https://www.suse.com/security/cve/CVE-2026-39826"
},
{
"category": "external",
"summary": "SUSE Bug 1264507 for CVE-2026-39826",
"url": "https://bugzilla.suse.com/1264507"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-26T14:54:34Z",
"details": "moderate"
}
],
"title": "CVE-2026-39826"
},
{
"cve": "CVE-2026-39836",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39836"
}
],
"notes": [
{
"category": "general",
"text": "The Dial and LookupPort functions panic on Windows when provided with an input containing a NUL (0).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39836",
"url": "https://www.suse.com/security/cve/CVE-2026-39836"
},
{
"category": "external",
"summary": "SUSE Bug 1264501 for CVE-2026-39836",
"url": "https://bugzilla.suse.com/1264501"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-26T14:54:34Z",
"details": "important"
}
],
"title": "CVE-2026-39836"
},
{
"cve": "CVE-2026-42499",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42499"
}
],
"notes": [
{
"category": "general",
"text": "Pathological inputs could cause DoS through consumePhrase when parsing an email address according to RFC 5322.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42499",
"url": "https://www.suse.com/security/cve/CVE-2026-42499"
},
{
"category": "external",
"summary": "SUSE Bug 1264502 for CVE-2026-42499",
"url": "https://bugzilla.suse.com/1264502"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-26T14:54:34Z",
"details": "important"
}
],
"title": "CVE-2026-42499"
},
{
"cve": "CVE-2026-42501",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42501"
}
],
"notes": [
{
"category": "general",
"text": "A malicious module proxy can exploit a flaw in the go command\u0027s validation of module checksums to bypass checksum database validation. This vulnerability affects any user using an untrusted module proxy (GOMODPROXY) or checksum database (GOSUMDB). A malicious module proxy can serve altered versions of the Go toolchain. When selecting a different version of the Go toolchain than the currently installed toolchain (due to the GOTOOLCHAIN environment variable, or a go.work or go.mod with a toolchain line), the go command will download and execute a toolchain provided by the module proxy. A malicious module proxy can bypass checksum database validation for this downloaded toolchain. Since this vulnerability affects the security of toolchain downloads, setting GOTOOLCHAIN to a fixed version is not sufficient. You must upgrade your base Go toolchain. The go tool always validates the hash of a toolchain before executing it, so fixed versions will refuse to execute any cached, altered versions of the toolchain. The go tool trusts go.sum files to contain accurate hashes of the current module\u0027s dependencies. A malicious proxy exploiting this vulnerability to serve an altered module will have caused an incorrect hash to be recorded in the go.sum. Users who have configured a non-trusted GOPROXY can determine if they have been affected by running \"rm go.sum ; go mod tidy ; go mod verify\", which will revalidate all dependencies of the current module. The specific flaw in more detail: The go command consults the checksum database to validate downloaded modules, when a module is not listed in the go.sum file. It verifies that the module hash reported by the checksum database matches the hash of the downloaded module. If, however, the checksum database returns a successful response that contains no entry for the module, the go command incorrectly permitted validation to succeed. A module proxy may mirror or proxy the checksum database, in which case the go command will not connect to the checksum database directly. Checksums reported by the checksum database are cryptographically signed, so a malicious proxy cannot alter the reported checksum for a module. However, a proxy which returns an empty checksum response, or a checksum response for an unrelated module, could cause the go command to proceed as if a downloaded module has been validated.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42501",
"url": "https://www.suse.com/security/cve/CVE-2026-42501"
},
{
"category": "external",
"summary": "SUSE Bug 1264499 for CVE-2026-42501",
"url": "https://bugzilla.suse.com/1264499"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-doc-1.25.10-150600.13.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:go1.25-openssl-race-1.25.10-150600.13.18.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-26T14:54:34Z",
"details": "important"
}
],
"title": "CVE-2026-42501"
}
]
}
SUSE-SU-2026:2092-1
Vulnerability from csaf_suse - Published: 2026-05-27 11:53 - Updated: 2026-05-27 11:53| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 | — |
Vendor Fix
|
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for go1.26-openssl",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for go1.26-openssl fixes the following issues\n\nSecurity issues:\n\n- CVE-2026-33811: net: crash when handling long CNAME response (bsc#1264508).\n- CVE-2026-33814: net/http: infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE (bsc#1264506).\n- CVE-2026-39817: cmd/go: \u0027go tool pack\u0027 does not sanitize output paths (bsc#1264505).\n- CVE-2026-39819: cmd/go: \u0027go bug\u0027 follows symlinks in predictable temporary filenames (bsc#1264504).\n- CVE-2026-39820: net/mail: quadratic string concatentation in consumeComment (bsc#1264503).\n- CVE-2026-39823: html/template: bypass of meta content URL escaping causes XSS (bsc#1264509).\n- CVE-2026-39825: net/http/httputil: ReverseProxy forwards queries with more than urlmaxqueryparams parameters\n (bsc#1264500).\n- CVE-2026-39826: html/template: escaper bypass leads to XSS (bsc#1264507).\n- CVE-2026-39836: net: panic in Dial and LookupPort when handling NUL byte on Windows (bsc#1264501).\n- CVE-2026-42499: net/mail: quadratic string concatenation in consumePhrase (bsc#1264502).\n- CVE-2026-42501: cmd/go: malicious module proxy can bypass checksum database (bsc#1264499).\n\nNon security issues:\n\n- go1.26 release tracking (bsc#1255111).\n- Go packages miss binutils-gold dependency (bsc#1170826).\n- supply a go built with openssl linkage (jsc#SLE-18320).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-2092,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2092,SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2092,SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2092,SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2092,SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2092,SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2092,SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2092,SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2092",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_2092-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:2092-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262092-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:2092-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-May/046840.html"
},
{
"category": "self",
"summary": "SUSE Bug 1170826",
"url": "https://bugzilla.suse.com/1170826"
},
{
"category": "self",
"summary": "SUSE Bug 1255111",
"url": "https://bugzilla.suse.com/1255111"
},
{
"category": "self",
"summary": "SUSE Bug 1264499",
"url": "https://bugzilla.suse.com/1264499"
},
{
"category": "self",
"summary": "SUSE Bug 1264500",
"url": "https://bugzilla.suse.com/1264500"
},
{
"category": "self",
"summary": "SUSE Bug 1264501",
"url": "https://bugzilla.suse.com/1264501"
},
{
"category": "self",
"summary": "SUSE Bug 1264502",
"url": "https://bugzilla.suse.com/1264502"
},
{
"category": "self",
"summary": "SUSE Bug 1264503",
"url": "https://bugzilla.suse.com/1264503"
},
{
"category": "self",
"summary": "SUSE Bug 1264504",
"url": "https://bugzilla.suse.com/1264504"
},
{
"category": "self",
"summary": "SUSE Bug 1264505",
"url": "https://bugzilla.suse.com/1264505"
},
{
"category": "self",
"summary": "SUSE Bug 1264506",
"url": "https://bugzilla.suse.com/1264506"
},
{
"category": "self",
"summary": "SUSE Bug 1264507",
"url": "https://bugzilla.suse.com/1264507"
},
{
"category": "self",
"summary": "SUSE Bug 1264508",
"url": "https://bugzilla.suse.com/1264508"
},
{
"category": "self",
"summary": "SUSE Bug 1264509",
"url": "https://bugzilla.suse.com/1264509"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33811 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33811/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33814 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39817 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39817/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39819 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39819/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39820 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39820/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39823 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39823/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39825 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39825/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39826 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39826/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39836 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39836/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42499 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42499/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42501 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42501/"
}
],
"title": "Security update for go1.26-openssl",
"tracking": {
"current_release_date": "2026-05-27T11:53:15Z",
"generator": {
"date": "2026-05-27T11:53:15Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:2092-1",
"initial_release_date": "2026-05-27T11:53:15Z",
"revision_history": [
{
"date": "2026-05-27T11:53:15Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"product": {
"name": "go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"product_id": "go1.26-openssl-1.26.3-150000.1.9.1.aarch64"
}
},
{
"category": "product_version",
"name": "go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"product": {
"name": "go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"product_id": "go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64"
}
},
{
"category": "product_version",
"name": "go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"product": {
"name": "go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"product_id": "go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.26-openssl-1.26.3-150000.1.9.1.i586",
"product": {
"name": "go1.26-openssl-1.26.3-150000.1.9.1.i586",
"product_id": "go1.26-openssl-1.26.3-150000.1.9.1.i586"
}
},
{
"category": "product_version",
"name": "go1.26-openssl-doc-1.26.3-150000.1.9.1.i586",
"product": {
"name": "go1.26-openssl-doc-1.26.3-150000.1.9.1.i586",
"product_id": "go1.26-openssl-doc-1.26.3-150000.1.9.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"product": {
"name": "go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"product_id": "go1.26-openssl-1.26.3-150000.1.9.1.ppc64le"
}
},
{
"category": "product_version",
"name": "go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"product": {
"name": "go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"product_id": "go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le"
}
},
{
"category": "product_version",
"name": "go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"product": {
"name": "go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"product_id": "go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"product": {
"name": "go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"product_id": "go1.26-openssl-1.26.3-150000.1.9.1.s390x"
}
},
{
"category": "product_version",
"name": "go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"product": {
"name": "go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"product_id": "go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x"
}
},
{
"category": "product_version",
"name": "go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"product": {
"name": "go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"product_id": "go1.26-openssl-race-1.26.3-150000.1.9.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"product": {
"name": "go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"product_id": "go1.26-openssl-1.26.3-150000.1.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"product": {
"name": "go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"product_id": "go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"product": {
"name": "go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"product_id": "go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.3-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.3-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.3-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.3-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.3-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.3-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.3-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.3-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.3-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.3-150000.1.9.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le"
},
"product_reference": "go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.3-150000.1.9.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x"
},
"product_reference": "go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.3-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le"
},
"product_reference": "go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x"
},
"product_reference": "go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le"
},
"product_reference": "go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.3-150000.1.9.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x"
},
"product_reference": "go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.3-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.3-150000.1.9.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le"
},
"product_reference": "go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.3-150000.1.9.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x"
},
"product_reference": "go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.3-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le"
},
"product_reference": "go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x"
},
"product_reference": "go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64"
},
"product_reference": "go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le"
},
"product_reference": "go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.3-150000.1.9.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x"
},
"product_reference": "go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.3-150000.1.9.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le"
},
"product_reference": "go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.3-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le"
},
"product_reference": "go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le"
},
"product_reference": "go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.3-150000.1.9.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le"
},
"product_reference": "go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-1.26.3-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le"
},
"product_reference": "go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le"
},
"product_reference": "go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
},
"product_reference": "go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-33811",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33811"
}
],
"notes": [
{
"category": "general",
"text": "When using LookupCNAME with the cgo DNS resolver, a very long CNAME response can trigger a double-free of C memory and a crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33811",
"url": "https://www.suse.com/security/cve/CVE-2026-33811"
},
{
"category": "external",
"summary": "SUSE Bug 1264508 for CVE-2026-33811",
"url": "https://bugzilla.suse.com/1264508"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-27T11:53:15Z",
"details": "important"
}
],
"title": "CVE-2026-33811"
},
{
"cve": "CVE-2026-33814",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33814"
}
],
"notes": [
{
"category": "general",
"text": "When processing HTTP/2 SETTINGS frames, transport will enter an infinite loop of writing CONTINUATION frames if it receives a SETTINGS_MAX_FRAME_SIZE with a value of 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33814",
"url": "https://www.suse.com/security/cve/CVE-2026-33814"
},
{
"category": "external",
"summary": "SUSE Bug 1264506 for CVE-2026-33814",
"url": "https://bugzilla.suse.com/1264506"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-27T11:53:15Z",
"details": "important"
}
],
"title": "CVE-2026-33814"
},
{
"cve": "CVE-2026-39817",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39817"
}
],
"notes": [
{
"category": "general",
"text": "The \"go tool pack\" subcommand (usually used only by the compiler as an internal tool with known-good inputs) does not sanitize output filenames. Extracting a malicious archive file with the \"pack\" subcommand can write files to arbitrary locations on the filesystem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39817",
"url": "https://www.suse.com/security/cve/CVE-2026-39817"
},
{
"category": "external",
"summary": "SUSE Bug 1264505 for CVE-2026-39817",
"url": "https://bugzilla.suse.com/1264505"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-27T11:53:15Z",
"details": "moderate"
}
],
"title": "CVE-2026-39817"
},
{
"cve": "CVE-2026-39819",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39819"
}
],
"notes": [
{
"category": "general",
"text": "The \"go bug\" command writes to two files with predictable names in the system temporary directory (for example, \"/tmp\"). An attacker with access to the temporary directory can create a symlink in one of these names, causing \"go bug\" to overwrite the target of the symlink.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39819",
"url": "https://www.suse.com/security/cve/CVE-2026-39819"
},
{
"category": "external",
"summary": "SUSE Bug 1264504 for CVE-2026-39819",
"url": "https://bugzilla.suse.com/1264504"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-27T11:53:15Z",
"details": "moderate"
}
],
"title": "CVE-2026-39819"
},
{
"cve": "CVE-2026-39820",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39820"
}
],
"notes": [
{
"category": "general",
"text": "Well-crafted inputs reaching ParseAddress, ParseAddressList, and ParseDate were able to trigger excessive CPU exhaustion and memory allocations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39820",
"url": "https://www.suse.com/security/cve/CVE-2026-39820"
},
{
"category": "external",
"summary": "SUSE Bug 1264503 for CVE-2026-39820",
"url": "https://bugzilla.suse.com/1264503"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-27T11:53:15Z",
"details": "important"
}
],
"title": "CVE-2026-39820"
},
{
"cve": "CVE-2026-39823",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39823"
}
],
"notes": [
{
"category": "general",
"text": "CVE-2026-27142 fixed a vulnerability in which URLs were not correctly escaped inside of a \u003cmeta\u003e tag\u0027s \u003ccontent\u003e attribute. If the URL content were to insert ASCII whitespaces around the \u0027=\u0027 rune inside of the \u003ccontent\u003e attribute, the escaper would fail to similarly escape it, leading to XSS.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39823",
"url": "https://www.suse.com/security/cve/CVE-2026-39823"
},
{
"category": "external",
"summary": "SUSE Bug 1264509 for CVE-2026-39823",
"url": "https://bugzilla.suse.com/1264509"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-27T11:53:15Z",
"details": "moderate"
}
],
"title": "CVE-2026-39823"
},
{
"cve": "CVE-2026-39825",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39825"
}
],
"notes": [
{
"category": "general",
"text": "ReverseProxy can forward queries containing parameters not visible to Rewrite functions. When used with a Rewrite function, or a Director function which parses query parameters, ReverseProxy sanitizes the forwarded request to remove query parameters which are not parsed by url.ParseQuery. ReverseProxy does not take ParseQuery\u0027s limit on the total number of query parameters (controlled by GODEBUG=urlmaxqueryparams=N) into account. This can permit ReverseProxy to forward a request containing a query parameter that is not visible to the Rewrite function. For example, the query \"a1=x\u0026a2=x\u0026...\u0026a10000=x\u0026hidden=y\" can forward the parameter \"hidden=y\" while hiding it from the proxy\u0027s Rewrite function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39825",
"url": "https://www.suse.com/security/cve/CVE-2026-39825"
},
{
"category": "external",
"summary": "SUSE Bug 1264500 for CVE-2026-39825",
"url": "https://bugzilla.suse.com/1264500"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-27T11:53:15Z",
"details": "moderate"
}
],
"title": "CVE-2026-39825"
},
{
"cve": "CVE-2026-39826",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39826"
}
],
"notes": [
{
"category": "general",
"text": "If a trusted template author were to write a \u003cscript\u003e tag containing an empty \u0027type\u0027 attribute or a \u0027type\u0027 attribute with an ASCII whitespace, the execution of the template would incorrectly escape any data passed into the \u003cscript\u003e block.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39826",
"url": "https://www.suse.com/security/cve/CVE-2026-39826"
},
{
"category": "external",
"summary": "SUSE Bug 1264507 for CVE-2026-39826",
"url": "https://bugzilla.suse.com/1264507"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-27T11:53:15Z",
"details": "moderate"
}
],
"title": "CVE-2026-39826"
},
{
"cve": "CVE-2026-39836",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39836"
}
],
"notes": [
{
"category": "general",
"text": "The Dial and LookupPort functions panic on Windows when provided with an input containing a NUL (0).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39836",
"url": "https://www.suse.com/security/cve/CVE-2026-39836"
},
{
"category": "external",
"summary": "SUSE Bug 1264501 for CVE-2026-39836",
"url": "https://bugzilla.suse.com/1264501"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-27T11:53:15Z",
"details": "important"
}
],
"title": "CVE-2026-39836"
},
{
"cve": "CVE-2026-42499",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42499"
}
],
"notes": [
{
"category": "general",
"text": "Pathological inputs could cause DoS through consumePhrase when parsing an email address according to RFC 5322.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42499",
"url": "https://www.suse.com/security/cve/CVE-2026-42499"
},
{
"category": "external",
"summary": "SUSE Bug 1264502 for CVE-2026-42499",
"url": "https://bugzilla.suse.com/1264502"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-27T11:53:15Z",
"details": "important"
}
],
"title": "CVE-2026-42499"
},
{
"cve": "CVE-2026-42501",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42501"
}
],
"notes": [
{
"category": "general",
"text": "A malicious module proxy can exploit a flaw in the go command\u0027s validation of module checksums to bypass checksum database validation. This vulnerability affects any user using an untrusted module proxy (GOMODPROXY) or checksum database (GOSUMDB). A malicious module proxy can serve altered versions of the Go toolchain. When selecting a different version of the Go toolchain than the currently installed toolchain (due to the GOTOOLCHAIN environment variable, or a go.work or go.mod with a toolchain line), the go command will download and execute a toolchain provided by the module proxy. A malicious module proxy can bypass checksum database validation for this downloaded toolchain. Since this vulnerability affects the security of toolchain downloads, setting GOTOOLCHAIN to a fixed version is not sufficient. You must upgrade your base Go toolchain. The go tool always validates the hash of a toolchain before executing it, so fixed versions will refuse to execute any cached, altered versions of the toolchain. The go tool trusts go.sum files to contain accurate hashes of the current module\u0027s dependencies. A malicious proxy exploiting this vulnerability to serve an altered module will have caused an incorrect hash to be recorded in the go.sum. Users who have configured a non-trusted GOPROXY can determine if they have been affected by running \"rm go.sum ; go mod tidy ; go mod verify\", which will revalidate all dependencies of the current module. The specific flaw in more detail: The go command consults the checksum database to validate downloaded modules, when a module is not listed in the go.sum file. It verifies that the module hash reported by the checksum database matches the hash of the downloaded module. If, however, the checksum database returns a successful response that contains no entry for the module, the go command incorrectly permitted validation to succeed. A module proxy may mirror or proxy the checksum database, in which case the go command will not connect to the checksum database directly. Checksums reported by the checksum database are cryptographically signed, so a malicious proxy cannot alter the reported checksum for a module. However, a proxy which returns an empty checksum response, or a checksum response for an unrelated module, could cause the go command to proceed as if a downloaded module has been validated.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42501",
"url": "https://www.suse.com/security/cve/CVE-2026-42501"
},
{
"category": "external",
"summary": "SUSE Bug 1264499 for CVE-2026-42501",
"url": "https://bugzilla.suse.com/1264499"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-doc-1.26.3-150000.1.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.26-openssl-race-1.26.3-150000.1.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-27T11:53:15Z",
"details": "important"
}
],
"title": "CVE-2026-42501"
}
]
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.