Action not permitted
Modal body text goes here.
cve-2022-0759
Vulnerability from cvelistv5
Published
2022-03-25 18:03
Modified
2024-08-02 23:40
Severity ?
EPSS score ?
Summary
A flaw was found in all versions of kubeclient up to (but not including) v4.9.3, the Ruby client for Kubernetes REST API, in the way it parsed kubeconfig files. When the kubeconfig file does not configure custom CA to verify certs, kubeclient ends up accepting any certificate (it wrongly returns VERIFY_NONE). Ruby applications that leverage kubeclient to parse kubeconfig files are susceptible to Man-in-the-middle attacks (MITM).
References
| ▼ | URL | Tags | |
|---|---|---|---|
| secalert@redhat.com | https://github.com/ManageIQ/kubeclient/issues/554 | Issue Tracking, Patch, Third Party Advisory | |
| secalert@redhat.com | https://github.com/ManageIQ/kubeclient/issues/555 | Issue Tracking, Patch, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/ManageIQ/kubeclient/issues/554 | Issue Tracking, Patch, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/ManageIQ/kubeclient/issues/555 | Issue Tracking, Patch, Third Party Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| ▼ | n/a | kubeclient |
Version: 4.9.3 |
|
|
|||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T23:40:03.643Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/ManageIQ/kubeclient/issues/554"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/ManageIQ/kubeclient/issues/555"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "kubeclient",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "4.9.3"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in all versions of kubeclient up to (but not including) v4.9.3, the Ruby client for Kubernetes REST API, in the way it parsed kubeconfig files. When the kubeconfig file does not configure custom CA to verify certs, kubeclient ends up accepting any certificate (it wrongly returns VERIFY_NONE). Ruby applications that leverage kubeclient to parse kubeconfig files are susceptible to Man-in-the-middle attacks (MITM)."
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-295",
"description": "CWE-295",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-03-25T18:03:10",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/ManageIQ/kubeclient/issues/554"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/ManageIQ/kubeclient/issues/555"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2022-0759",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "kubeclient",
"version": {
"version_data": [
{
"version_value": "4.9.3"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A flaw was found in all versions of kubeclient up to (but not including) v4.9.3, the Ruby client for Kubernetes REST API, in the way it parsed kubeconfig files. When the kubeconfig file does not configure custom CA to verify certs, kubeclient ends up accepting any certificate (it wrongly returns VERIFY_NONE). Ruby applications that leverage kubeclient to parse kubeconfig files are susceptible to Man-in-the-middle attacks (MITM)."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-295"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/ManageIQ/kubeclient/issues/554",
"refsource": "MISC",
"url": "https://github.com/ManageIQ/kubeclient/issues/554"
},
{
"name": "https://github.com/ManageIQ/kubeclient/issues/555",
"refsource": "MISC",
"url": "https://github.com/ManageIQ/kubeclient/issues/555"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2022-0759",
"datePublished": "2022-03-25T18:03:10",
"dateReserved": "2022-02-24T00:00:00",
"dateUpdated": "2024-08-02T23:40:03.643Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2022-0759\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2022-03-25T19:15:10.283\",\"lastModified\":\"2024-11-21T06:39:20.370\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A flaw was found in all versions of kubeclient up to (but not including) v4.9.3, the Ruby client for Kubernetes REST API, in the way it parsed kubeconfig files. When the kubeconfig file does not configure custom CA to verify certs, kubeclient ends up accepting any certificate (it wrongly returns VERIFY_NONE). Ruby applications that leverage kubeclient to parse kubeconfig files are susceptible to Man-in-the-middle attacks (MITM).\"},{\"lang\":\"es\",\"value\":\"Se ha encontrado un fallo en todas las versiones de kubeclient hasta (pero sin incluir) la v4.9.3, el cliente Ruby para la API REST de Kubernetes, en la forma en que analiza los archivos kubeconfig. Cuando el archivo kubeconfig no configura la CA personalizada para verificar los certificados, kubeclient acaba aceptando cualquier certificado (devuelve err\u00f3neamente VERIFY_NONE). Las aplicaciones Ruby que aprovechan kubeclient para analizar los archivos kubeconfig son susceptibles de ataques de tipo Man-in-the-middle (MITM)\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":8.1,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.2,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:P/I:P/A:P\",\"baseScore\":6.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-295\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-295\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:kubeclient:*:*:*:*:*:ruby:*:*\",\"versionEndExcluding\":\"4.9.3\",\"matchCriteriaId\":\"4CCE4A28-6BE3-483A-B6B5-95A9D554800A\"}]}]}],\"references\":[{\"url\":\"https://github.com/ManageIQ/kubeclient/issues/554\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/ManageIQ/kubeclient/issues/555\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/ManageIQ/kubeclient/issues/554\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/ManageIQ/kubeclient/issues/555\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]}]}}"
}
}
rhsa-2022_6051
Vulnerability from csaf_redhat
Published
2022-08-18 16:04
Modified
2024-12-08 13:59
Summary
Red Hat Security Advisory: Logging Subsystem 5.5.0 - Red Hat OpenShift security update
Notes
Topic
An update is now available for RHOL-5.5-RHEL-8.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Logging Subsystem 5.5.0 - Red Hat OpenShift
Security Fix(es):
* kubeclient: kubeconfig parsing error can lead to MITM attacks (CVE-2022-0759)
* golang: compress/gzip: stack exhaustion in Reader.Read (CVE-2022-30631)
* golang: out-of-bounds read in golang.org/x/text/language leads to DoS (CVE-2021-38561)
* prometheus/client_golang: Denial of service using InstrumentHandlerCounter (CVE-2022-21698)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update is now available for RHOL-5.5-RHEL-8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Logging Subsystem 5.5.0 - Red Hat OpenShift\n\nSecurity Fix(es):\n\n* kubeclient: kubeconfig parsing error can lead to MITM attacks (CVE-2022-0759)\n\n* golang: compress/gzip: stack exhaustion in Reader.Read (CVE-2022-30631)\n\n* golang: out-of-bounds read in golang.org/x/text/language leads to DoS (CVE-2021-38561)\n\n* prometheus/client_golang: Denial of service using InstrumentHandlerCounter (CVE-2022-21698)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2022:6051",
"url": "https://access.redhat.com/errata/RHSA-2022:6051"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2045880",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2045880"
},
{
"category": "external",
"summary": "2058404",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2058404"
},
{
"category": "external",
"summary": "2100495",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2100495"
},
{
"category": "external",
"summary": "2107342",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2107342"
},
{
"category": "external",
"summary": "LOG-1415",
"url": "https://issues.redhat.com/browse/LOG-1415"
},
{
"category": "external",
"summary": "LOG-1539",
"url": "https://issues.redhat.com/browse/LOG-1539"
},
{
"category": "external",
"summary": "LOG-1713",
"url": "https://issues.redhat.com/browse/LOG-1713"
},
{
"category": "external",
"summary": "LOG-2063",
"url": "https://issues.redhat.com/browse/LOG-2063"
},
{
"category": "external",
"summary": "LOG-2134",
"url": "https://issues.redhat.com/browse/LOG-2134"
},
{
"category": "external",
"summary": "LOG-2159",
"url": "https://issues.redhat.com/browse/LOG-2159"
},
{
"category": "external",
"summary": "LOG-2165",
"url": "https://issues.redhat.com/browse/LOG-2165"
},
{
"category": "external",
"summary": "LOG-2167",
"url": "https://issues.redhat.com/browse/LOG-2167"
},
{
"category": "external",
"summary": "LOG-2169",
"url": "https://issues.redhat.com/browse/LOG-2169"
},
{
"category": "external",
"summary": "LOG-2172",
"url": "https://issues.redhat.com/browse/LOG-2172"
},
{
"category": "external",
"summary": "LOG-2242",
"url": "https://issues.redhat.com/browse/LOG-2242"
},
{
"category": "external",
"summary": "LOG-2243",
"url": "https://issues.redhat.com/browse/LOG-2243"
},
{
"category": "external",
"summary": "LOG-2264",
"url": "https://issues.redhat.com/browse/LOG-2264"
},
{
"category": "external",
"summary": "LOG-2274",
"url": "https://issues.redhat.com/browse/LOG-2274"
},
{
"category": "external",
"summary": "LOG-2276",
"url": "https://issues.redhat.com/browse/LOG-2276"
},
{
"category": "external",
"summary": "LOG-2290",
"url": "https://issues.redhat.com/browse/LOG-2290"
},
{
"category": "external",
"summary": "LOG-2291",
"url": "https://issues.redhat.com/browse/LOG-2291"
},
{
"category": "external",
"summary": "LOG-2294",
"url": "https://issues.redhat.com/browse/LOG-2294"
},
{
"category": "external",
"summary": "LOG-2300",
"url": "https://issues.redhat.com/browse/LOG-2300"
},
{
"category": "external",
"summary": "LOG-2303",
"url": "https://issues.redhat.com/browse/LOG-2303"
},
{
"category": "external",
"summary": "LOG-2308",
"url": "https://issues.redhat.com/browse/LOG-2308"
},
{
"category": "external",
"summary": "LOG-2333",
"url": "https://issues.redhat.com/browse/LOG-2333"
},
{
"category": "external",
"summary": "LOG-2337",
"url": "https://issues.redhat.com/browse/LOG-2337"
},
{
"category": "external",
"summary": "LOG-2342",
"url": "https://issues.redhat.com/browse/LOG-2342"
},
{
"category": "external",
"summary": "LOG-2384",
"url": "https://issues.redhat.com/browse/LOG-2384"
},
{
"category": "external",
"summary": "LOG-2411",
"url": "https://issues.redhat.com/browse/LOG-2411"
},
{
"category": "external",
"summary": "LOG-2412",
"url": "https://issues.redhat.com/browse/LOG-2412"
},
{
"category": "external",
"summary": "LOG-2413",
"url": "https://issues.redhat.com/browse/LOG-2413"
},
{
"category": "external",
"summary": "LOG-2418",
"url": "https://issues.redhat.com/browse/LOG-2418"
},
{
"category": "external",
"summary": "LOG-2439",
"url": "https://issues.redhat.com/browse/LOG-2439"
},
{
"category": "external",
"summary": "LOG-2440",
"url": "https://issues.redhat.com/browse/LOG-2440"
},
{
"category": "external",
"summary": "LOG-2444",
"url": "https://issues.redhat.com/browse/LOG-2444"
},
{
"category": "external",
"summary": "LOG-2460",
"url": "https://issues.redhat.com/browse/LOG-2460"
},
{
"category": "external",
"summary": "LOG-2461",
"url": "https://issues.redhat.com/browse/LOG-2461"
},
{
"category": "external",
"summary": "LOG-2463",
"url": "https://issues.redhat.com/browse/LOG-2463"
},
{
"category": "external",
"summary": "LOG-2474",
"url": "https://issues.redhat.com/browse/LOG-2474"
},
{
"category": "external",
"summary": "LOG-2522",
"url": "https://issues.redhat.com/browse/LOG-2522"
},
{
"category": "external",
"summary": "LOG-2525",
"url": "https://issues.redhat.com/browse/LOG-2525"
},
{
"category": "external",
"summary": "LOG-2546",
"url": "https://issues.redhat.com/browse/LOG-2546"
},
{
"category": "external",
"summary": "LOG-2549",
"url": "https://issues.redhat.com/browse/LOG-2549"
},
{
"category": "external",
"summary": "LOG-2554",
"url": "https://issues.redhat.com/browse/LOG-2554"
},
{
"category": "external",
"summary": "LOG-2588",
"url": "https://issues.redhat.com/browse/LOG-2588"
},
{
"category": "external",
"summary": "LOG-2596",
"url": "https://issues.redhat.com/browse/LOG-2596"
},
{
"category": "external",
"summary": "LOG-2599",
"url": "https://issues.redhat.com/browse/LOG-2599"
},
{
"category": "external",
"summary": "LOG-2605",
"url": "https://issues.redhat.com/browse/LOG-2605"
},
{
"category": "external",
"summary": "LOG-2609",
"url": "https://issues.redhat.com/browse/LOG-2609"
},
{
"category": "external",
"summary": "LOG-2619",
"url": "https://issues.redhat.com/browse/LOG-2619"
},
{
"category": "external",
"summary": "LOG-2627",
"url": "https://issues.redhat.com/browse/LOG-2627"
},
{
"category": "external",
"summary": "LOG-2649",
"url": "https://issues.redhat.com/browse/LOG-2649"
},
{
"category": "external",
"summary": "LOG-2656",
"url": "https://issues.redhat.com/browse/LOG-2656"
},
{
"category": "external",
"summary": "LOG-2664",
"url": "https://issues.redhat.com/browse/LOG-2664"
},
{
"category": "external",
"summary": "LOG-2665",
"url": "https://issues.redhat.com/browse/LOG-2665"
},
{
"category": "external",
"summary": "LOG-2693",
"url": "https://issues.redhat.com/browse/LOG-2693"
},
{
"category": "external",
"summary": "LOG-2700",
"url": "https://issues.redhat.com/browse/LOG-2700"
},
{
"category": "external",
"summary": "LOG-2703",
"url": "https://issues.redhat.com/browse/LOG-2703"
},
{
"category": "external",
"summary": "LOG-2725",
"url": "https://issues.redhat.com/browse/LOG-2725"
},
{
"category": "external",
"summary": "LOG-2731",
"url": "https://issues.redhat.com/browse/LOG-2731"
},
{
"category": "external",
"summary": "LOG-2732",
"url": "https://issues.redhat.com/browse/LOG-2732"
},
{
"category": "external",
"summary": "LOG-2742",
"url": "https://issues.redhat.com/browse/LOG-2742"
},
{
"category": "external",
"summary": "LOG-2746",
"url": "https://issues.redhat.com/browse/LOG-2746"
},
{
"category": "external",
"summary": "LOG-2749",
"url": "https://issues.redhat.com/browse/LOG-2749"
},
{
"category": "external",
"summary": "LOG-2753",
"url": "https://issues.redhat.com/browse/LOG-2753"
},
{
"category": "external",
"summary": "LOG-2763",
"url": "https://issues.redhat.com/browse/LOG-2763"
},
{
"category": "external",
"summary": "LOG-2764",
"url": "https://issues.redhat.com/browse/LOG-2764"
},
{
"category": "external",
"summary": "LOG-2765",
"url": "https://issues.redhat.com/browse/LOG-2765"
},
{
"category": "external",
"summary": "LOG-2766",
"url": "https://issues.redhat.com/browse/LOG-2766"
},
{
"category": "external",
"summary": "LOG-2772",
"url": "https://issues.redhat.com/browse/LOG-2772"
},
{
"category": "external",
"summary": "LOG-2773",
"url": "https://issues.redhat.com/browse/LOG-2773"
},
{
"category": "external",
"summary": "LOG-2778",
"url": "https://issues.redhat.com/browse/LOG-2778"
},
{
"category": "external",
"summary": "LOG-2784",
"url": "https://issues.redhat.com/browse/LOG-2784"
},
{
"category": "external",
"summary": "LOG-2793",
"url": "https://issues.redhat.com/browse/LOG-2793"
},
{
"category": "external",
"summary": "LOG-2864",
"url": "https://issues.redhat.com/browse/LOG-2864"
},
{
"category": "external",
"summary": "LOG-2867",
"url": "https://issues.redhat.com/browse/LOG-2867"
},
{
"category": "external",
"summary": "LOG-2873",
"url": "https://issues.redhat.com/browse/LOG-2873"
},
{
"category": "external",
"summary": "LOG-2875",
"url": "https://issues.redhat.com/browse/LOG-2875"
},
{
"category": "external",
"summary": "LOG-2876",
"url": "https://issues.redhat.com/browse/LOG-2876"
},
{
"category": "external",
"summary": "LOG-2877",
"url": "https://issues.redhat.com/browse/LOG-2877"
},
{
"category": "external",
"summary": "LOG-2882",
"url": "https://issues.redhat.com/browse/LOG-2882"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_6051.json"
}
],
"title": "Red Hat Security Advisory: Logging Subsystem 5.5.0 - Red Hat OpenShift security update",
"tracking": {
"current_release_date": "2024-12-08T13:59:38+00:00",
"generator": {
"date": "2024-12-08T13:59:38+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.3"
}
},
"id": "RHSA-2022:6051",
"initial_release_date": "2022-08-18T16:04:18+00:00",
"revision_history": [
{
"date": "2022-08-18T16:04:18+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2022-08-18T16:04:18+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-12-08T13:59:38+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHOL 5.5 for RHEL 8",
"product": {
"name": "RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:logging:5.5::el8"
}
}
}
],
"category": "product_family",
"name": "logging for Red Hat OpenShift"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-logging/cluster-logging-rhel8-operator@sha256:d81f213923e8a162eb1a842ed04bedb23e8d069c18857ab63f9770ff222d635d_s390x",
"product": {
"name": "openshift-logging/cluster-logging-rhel8-operator@sha256:d81f213923e8a162eb1a842ed04bedb23e8d069c18857ab63f9770ff222d635d_s390x",
"product_id": "openshift-logging/cluster-logging-rhel8-operator@sha256:d81f213923e8a162eb1a842ed04bedb23e8d069c18857ab63f9770ff222d635d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-rhel8-operator@sha256:d81f213923e8a162eb1a842ed04bedb23e8d069c18857ab63f9770ff222d635d?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/cluster-logging-rhel8-operator\u0026tag=v5.5.0-57"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch-rhel8-operator@sha256:e29fb87e700f78c9fa05085be6f5e191d840246de0969fb2e52c845a268bf1d1_s390x",
"product": {
"name": "openshift-logging/elasticsearch-rhel8-operator@sha256:e29fb87e700f78c9fa05085be6f5e191d840246de0969fb2e52c845a268bf1d1_s390x",
"product_id": "openshift-logging/elasticsearch-rhel8-operator@sha256:e29fb87e700f78c9fa05085be6f5e191d840246de0969fb2e52c845a268bf1d1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch-rhel8-operator@sha256:e29fb87e700f78c9fa05085be6f5e191d840246de0969fb2e52c845a268bf1d1?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch-rhel8-operator\u0026tag=v5.5.0-40"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch-proxy-rhel8@sha256:81949b18210e889ac7d7418d2ce9af7648e65f54daccf94ed372c2d6542921fa_s390x",
"product": {
"name": "openshift-logging/elasticsearch-proxy-rhel8@sha256:81949b18210e889ac7d7418d2ce9af7648e65f54daccf94ed372c2d6542921fa_s390x",
"product_id": "openshift-logging/elasticsearch-proxy-rhel8@sha256:81949b18210e889ac7d7418d2ce9af7648e65f54daccf94ed372c2d6542921fa_s390x",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch-proxy-rhel8@sha256:81949b18210e889ac7d7418d2ce9af7648e65f54daccf94ed372c2d6542921fa?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel8\u0026tag=v1.0.0-261"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/log-file-metric-exporter-rhel8@sha256:781d52334d01ac30aeebd31d59a66677e947639cebb3322de8e53a44ab9e491e_s390x",
"product": {
"name": "openshift-logging/log-file-metric-exporter-rhel8@sha256:781d52334d01ac30aeebd31d59a66677e947639cebb3322de8e53a44ab9e491e_s390x",
"product_id": "openshift-logging/log-file-metric-exporter-rhel8@sha256:781d52334d01ac30aeebd31d59a66677e947639cebb3322de8e53a44ab9e491e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/log-file-metric-exporter-rhel8@sha256:781d52334d01ac30aeebd31d59a66677e947639cebb3322de8e53a44ab9e491e?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel8\u0026tag=v1.1.0-38"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-curator5-rhel8@sha256:d18eba5df394859cff7ee2e8c9d0a7405b74a0a6fb4a81272b9c5fd9e4afc804_s390x",
"product": {
"name": "openshift-logging/logging-curator5-rhel8@sha256:d18eba5df394859cff7ee2e8c9d0a7405b74a0a6fb4a81272b9c5fd9e4afc804_s390x",
"product_id": "openshift-logging/logging-curator5-rhel8@sha256:d18eba5df394859cff7ee2e8c9d0a7405b74a0a6fb4a81272b9c5fd9e4afc804_s390x",
"product_identification_helper": {
"purl": "pkg:oci/logging-curator5-rhel8@sha256:d18eba5df394859cff7ee2e8c9d0a7405b74a0a6fb4a81272b9c5fd9e4afc804?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/logging-curator5-rhel8\u0026tag=v5.8.1-210"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch6-rhel8@sha256:b7acb0b482ada86354467bbf0544a61ac385f59c865147cf986f9cb09db663b0_s390x",
"product": {
"name": "openshift-logging/elasticsearch6-rhel8@sha256:b7acb0b482ada86354467bbf0544a61ac385f59c865147cf986f9cb09db663b0_s390x",
"product_id": "openshift-logging/elasticsearch6-rhel8@sha256:b7acb0b482ada86354467bbf0544a61ac385f59c865147cf986f9cb09db663b0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch6-rhel8@sha256:b7acb0b482ada86354467bbf0544a61ac385f59c865147cf986f9cb09db663b0?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch6-rhel8\u0026tag=v6.8.1-230"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/eventrouter-rhel8@sha256:593394515d7cbc4111d1a67703c9c083a8cb6e0d6d6f8e5b914f810e003982ca_s390x",
"product": {
"name": "openshift-logging/eventrouter-rhel8@sha256:593394515d7cbc4111d1a67703c9c083a8cb6e0d6d6f8e5b914f810e003982ca_s390x",
"product_id": "openshift-logging/eventrouter-rhel8@sha256:593394515d7cbc4111d1a67703c9c083a8cb6e0d6d6f8e5b914f810e003982ca_s390x",
"product_identification_helper": {
"purl": "pkg:oci/eventrouter-rhel8@sha256:593394515d7cbc4111d1a67703c9c083a8cb6e0d6d6f8e5b914f810e003982ca?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/eventrouter-rhel8\u0026tag=v0.4.0-14"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/fluentd-rhel8@sha256:3317d3fc0bde3446879c47e65412a893d7b8106f7f8efba6dde4a1e04ea090de_s390x",
"product": {
"name": "openshift-logging/fluentd-rhel8@sha256:3317d3fc0bde3446879c47e65412a893d7b8106f7f8efba6dde4a1e04ea090de_s390x",
"product_id": "openshift-logging/fluentd-rhel8@sha256:3317d3fc0bde3446879c47e65412a893d7b8106f7f8efba6dde4a1e04ea090de_s390x",
"product_identification_helper": {
"purl": "pkg:oci/fluentd-rhel8@sha256:3317d3fc0bde3446879c47e65412a893d7b8106f7f8efba6dde4a1e04ea090de?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/fluentd-rhel8\u0026tag=v1.14.6-29"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/kibana6-rhel8@sha256:82f069b742b7151b4e0f5119f100682200fc8b2561e9444132257df28601550c_s390x",
"product": {
"name": "openshift-logging/kibana6-rhel8@sha256:82f069b742b7151b4e0f5119f100682200fc8b2561e9444132257df28601550c_s390x",
"product_id": "openshift-logging/kibana6-rhel8@sha256:82f069b742b7151b4e0f5119f100682200fc8b2561e9444132257df28601550c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kibana6-rhel8@sha256:82f069b742b7151b4e0f5119f100682200fc8b2561e9444132257df28601550c?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/kibana6-rhel8\u0026tag=v6.8.1-262"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-loki-rhel8@sha256:757febef9d392c49c61de2712e6dd9fa59bb21d2a64abec3a26df27c737ce8d4_s390x",
"product": {
"name": "openshift-logging/logging-loki-rhel8@sha256:757febef9d392c49c61de2712e6dd9fa59bb21d2a64abec3a26df27c737ce8d4_s390x",
"product_id": "openshift-logging/logging-loki-rhel8@sha256:757febef9d392c49c61de2712e6dd9fa59bb21d2a64abec3a26df27c737ce8d4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/logging-loki-rhel8@sha256:757febef9d392c49c61de2712e6dd9fa59bb21d2a64abec3a26df27c737ce8d4?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/logging-loki-rhel8\u0026tag=v2.6.1-9"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/vector-rhel8@sha256:8f2eb1e00cf1491b71180612bae76753d36936fbd4b413c48d98a9273e0b30a7_s390x",
"product": {
"name": "openshift-logging/vector-rhel8@sha256:8f2eb1e00cf1491b71180612bae76753d36936fbd4b413c48d98a9273e0b30a7_s390x",
"product_id": "openshift-logging/vector-rhel8@sha256:8f2eb1e00cf1491b71180612bae76753d36936fbd4b413c48d98a9273e0b30a7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/vector-rhel8@sha256:8f2eb1e00cf1491b71180612bae76753d36936fbd4b413c48d98a9273e0b30a7?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/vector-rhel8\u0026tag=v0.21.0-8"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-view-plugin-rhel8@sha256:c069e554ec59588384d4829d3dd7b5e50972b5a215433953b8d4cd9eb6f142c5_s390x",
"product": {
"name": "openshift-logging/logging-view-plugin-rhel8@sha256:c069e554ec59588384d4829d3dd7b5e50972b5a215433953b8d4cd9eb6f142c5_s390x",
"product_id": "openshift-logging/logging-view-plugin-rhel8@sha256:c069e554ec59588384d4829d3dd7b5e50972b5a215433953b8d4cd9eb6f142c5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/logging-view-plugin-rhel8@sha256:c069e554ec59588384d4829d3dd7b5e50972b5a215433953b8d4cd9eb6f142c5?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/logging-view-plugin-rhel8\u0026tag=v5.5.0-18"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/loki-rhel8-operator@sha256:4e3af348f830133362ce9a859c1d7025b12e57f0394c352859933fcdf7f6a226_s390x",
"product": {
"name": "openshift-logging/loki-rhel8-operator@sha256:4e3af348f830133362ce9a859c1d7025b12e57f0394c352859933fcdf7f6a226_s390x",
"product_id": "openshift-logging/loki-rhel8-operator@sha256:4e3af348f830133362ce9a859c1d7025b12e57f0394c352859933fcdf7f6a226_s390x",
"product_identification_helper": {
"purl": "pkg:oci/loki-rhel8-operator@sha256:4e3af348f830133362ce9a859c1d7025b12e57f0394c352859933fcdf7f6a226?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/loki-rhel8-operator\u0026tag=v5.5.0-33"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/lokistack-gateway-rhel8@sha256:cb75c249014ca7e344dc184355e0c05ed2a82ec1b3ba097e83ae6481f8be8682_s390x",
"product": {
"name": "openshift-logging/lokistack-gateway-rhel8@sha256:cb75c249014ca7e344dc184355e0c05ed2a82ec1b3ba097e83ae6481f8be8682_s390x",
"product_id": "openshift-logging/lokistack-gateway-rhel8@sha256:cb75c249014ca7e344dc184355e0c05ed2a82ec1b3ba097e83ae6481f8be8682_s390x",
"product_identification_helper": {
"purl": "pkg:oci/lokistack-gateway-rhel8@sha256:cb75c249014ca7e344dc184355e0c05ed2a82ec1b3ba097e83ae6481f8be8682?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/lokistack-gateway-rhel8\u0026tag=v0.1.0-9"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/opa-openshift-rhel8@sha256:184b8163e6964c788e316d1f26c91e9452a3362d04b0192dbcccacde2d6ff0ec_s390x",
"product": {
"name": "openshift-logging/opa-openshift-rhel8@sha256:184b8163e6964c788e316d1f26c91e9452a3362d04b0192dbcccacde2d6ff0ec_s390x",
"product_id": "openshift-logging/opa-openshift-rhel8@sha256:184b8163e6964c788e316d1f26c91e9452a3362d04b0192dbcccacde2d6ff0ec_s390x",
"product_identification_helper": {
"purl": "pkg:oci/opa-openshift-rhel8@sha256:184b8163e6964c788e316d1f26c91e9452a3362d04b0192dbcccacde2d6ff0ec?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/opa-openshift-rhel8\u0026tag=v0.1.0-7"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-logging/cluster-logging-rhel8-operator@sha256:7bdf236ddcf99e13e7b03eac3665f456ea520ea34658158b37b53f5515ea2941_ppc64le",
"product": {
"name": "openshift-logging/cluster-logging-rhel8-operator@sha256:7bdf236ddcf99e13e7b03eac3665f456ea520ea34658158b37b53f5515ea2941_ppc64le",
"product_id": "openshift-logging/cluster-logging-rhel8-operator@sha256:7bdf236ddcf99e13e7b03eac3665f456ea520ea34658158b37b53f5515ea2941_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-rhel8-operator@sha256:7bdf236ddcf99e13e7b03eac3665f456ea520ea34658158b37b53f5515ea2941?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/cluster-logging-rhel8-operator\u0026tag=v5.5.0-57"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch-rhel8-operator@sha256:5a3b66bd077ee0402fcf70530f3843b51894101e5c88b13467dd9503b834527f_ppc64le",
"product": {
"name": "openshift-logging/elasticsearch-rhel8-operator@sha256:5a3b66bd077ee0402fcf70530f3843b51894101e5c88b13467dd9503b834527f_ppc64le",
"product_id": "openshift-logging/elasticsearch-rhel8-operator@sha256:5a3b66bd077ee0402fcf70530f3843b51894101e5c88b13467dd9503b834527f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch-rhel8-operator@sha256:5a3b66bd077ee0402fcf70530f3843b51894101e5c88b13467dd9503b834527f?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch-rhel8-operator\u0026tag=v5.5.0-40"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch-proxy-rhel8@sha256:c591f62bbb9f0cc726db8fb475217b00f165ac7685d8b25343261d01fe452d17_ppc64le",
"product": {
"name": "openshift-logging/elasticsearch-proxy-rhel8@sha256:c591f62bbb9f0cc726db8fb475217b00f165ac7685d8b25343261d01fe452d17_ppc64le",
"product_id": "openshift-logging/elasticsearch-proxy-rhel8@sha256:c591f62bbb9f0cc726db8fb475217b00f165ac7685d8b25343261d01fe452d17_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch-proxy-rhel8@sha256:c591f62bbb9f0cc726db8fb475217b00f165ac7685d8b25343261d01fe452d17?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel8\u0026tag=v1.0.0-261"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/log-file-metric-exporter-rhel8@sha256:25ac084cc90c7fd7fdd77b7c3267a16cafa88998f115d839bea4f759cb60545f_ppc64le",
"product": {
"name": "openshift-logging/log-file-metric-exporter-rhel8@sha256:25ac084cc90c7fd7fdd77b7c3267a16cafa88998f115d839bea4f759cb60545f_ppc64le",
"product_id": "openshift-logging/log-file-metric-exporter-rhel8@sha256:25ac084cc90c7fd7fdd77b7c3267a16cafa88998f115d839bea4f759cb60545f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/log-file-metric-exporter-rhel8@sha256:25ac084cc90c7fd7fdd77b7c3267a16cafa88998f115d839bea4f759cb60545f?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel8\u0026tag=v1.1.0-38"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-curator5-rhel8@sha256:3682ad9746f7df5b9c5b0f65618279fec68691446cb440d003c121afd5949e46_ppc64le",
"product": {
"name": "openshift-logging/logging-curator5-rhel8@sha256:3682ad9746f7df5b9c5b0f65618279fec68691446cb440d003c121afd5949e46_ppc64le",
"product_id": "openshift-logging/logging-curator5-rhel8@sha256:3682ad9746f7df5b9c5b0f65618279fec68691446cb440d003c121afd5949e46_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/logging-curator5-rhel8@sha256:3682ad9746f7df5b9c5b0f65618279fec68691446cb440d003c121afd5949e46?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/logging-curator5-rhel8\u0026tag=v5.8.1-210"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch6-rhel8@sha256:95b249bc9d4cf115f70844235b2e58370d4dd2ace971201bc6518b3d9a40759a_ppc64le",
"product": {
"name": "openshift-logging/elasticsearch6-rhel8@sha256:95b249bc9d4cf115f70844235b2e58370d4dd2ace971201bc6518b3d9a40759a_ppc64le",
"product_id": "openshift-logging/elasticsearch6-rhel8@sha256:95b249bc9d4cf115f70844235b2e58370d4dd2ace971201bc6518b3d9a40759a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch6-rhel8@sha256:95b249bc9d4cf115f70844235b2e58370d4dd2ace971201bc6518b3d9a40759a?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch6-rhel8\u0026tag=v6.8.1-230"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/eventrouter-rhel8@sha256:48b4fe535691ed432867c9bc1ac4ec734f1e6b5ef51d11a702b99f2d1623840f_ppc64le",
"product": {
"name": "openshift-logging/eventrouter-rhel8@sha256:48b4fe535691ed432867c9bc1ac4ec734f1e6b5ef51d11a702b99f2d1623840f_ppc64le",
"product_id": "openshift-logging/eventrouter-rhel8@sha256:48b4fe535691ed432867c9bc1ac4ec734f1e6b5ef51d11a702b99f2d1623840f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/eventrouter-rhel8@sha256:48b4fe535691ed432867c9bc1ac4ec734f1e6b5ef51d11a702b99f2d1623840f?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/eventrouter-rhel8\u0026tag=v0.4.0-14"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/fluentd-rhel8@sha256:5e8b7ca30990ee8e13700de3f82572858c563d84609158bc4d167c12d80aee26_ppc64le",
"product": {
"name": "openshift-logging/fluentd-rhel8@sha256:5e8b7ca30990ee8e13700de3f82572858c563d84609158bc4d167c12d80aee26_ppc64le",
"product_id": "openshift-logging/fluentd-rhel8@sha256:5e8b7ca30990ee8e13700de3f82572858c563d84609158bc4d167c12d80aee26_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/fluentd-rhel8@sha256:5e8b7ca30990ee8e13700de3f82572858c563d84609158bc4d167c12d80aee26?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/fluentd-rhel8\u0026tag=v1.14.6-29"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/kibana6-rhel8@sha256:1b0a964d266938f06fd6983bdd710222b0ce66bb6036ff992186940b31320ff0_ppc64le",
"product": {
"name": "openshift-logging/kibana6-rhel8@sha256:1b0a964d266938f06fd6983bdd710222b0ce66bb6036ff992186940b31320ff0_ppc64le",
"product_id": "openshift-logging/kibana6-rhel8@sha256:1b0a964d266938f06fd6983bdd710222b0ce66bb6036ff992186940b31320ff0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kibana6-rhel8@sha256:1b0a964d266938f06fd6983bdd710222b0ce66bb6036ff992186940b31320ff0?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/kibana6-rhel8\u0026tag=v6.8.1-262"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-loki-rhel8@sha256:7e0af82c1644ee06039c4d56f00db279d4c83f2db9ba624c71353db3032a114c_ppc64le",
"product": {
"name": "openshift-logging/logging-loki-rhel8@sha256:7e0af82c1644ee06039c4d56f00db279d4c83f2db9ba624c71353db3032a114c_ppc64le",
"product_id": "openshift-logging/logging-loki-rhel8@sha256:7e0af82c1644ee06039c4d56f00db279d4c83f2db9ba624c71353db3032a114c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/logging-loki-rhel8@sha256:7e0af82c1644ee06039c4d56f00db279d4c83f2db9ba624c71353db3032a114c?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/logging-loki-rhel8\u0026tag=v2.6.1-9"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/vector-rhel8@sha256:cd0f0a4a31ea584ae35afa99573b070a4b4eedfa38395b4507342134d0f3ad82_ppc64le",
"product": {
"name": "openshift-logging/vector-rhel8@sha256:cd0f0a4a31ea584ae35afa99573b070a4b4eedfa38395b4507342134d0f3ad82_ppc64le",
"product_id": "openshift-logging/vector-rhel8@sha256:cd0f0a4a31ea584ae35afa99573b070a4b4eedfa38395b4507342134d0f3ad82_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/vector-rhel8@sha256:cd0f0a4a31ea584ae35afa99573b070a4b4eedfa38395b4507342134d0f3ad82?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/vector-rhel8\u0026tag=v0.21.0-8"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-view-plugin-rhel8@sha256:a70a65d977a56a9c64d0b004bf6dc059d3f180e13c3ed7628b217f3ec526c4f5_ppc64le",
"product": {
"name": "openshift-logging/logging-view-plugin-rhel8@sha256:a70a65d977a56a9c64d0b004bf6dc059d3f180e13c3ed7628b217f3ec526c4f5_ppc64le",
"product_id": "openshift-logging/logging-view-plugin-rhel8@sha256:a70a65d977a56a9c64d0b004bf6dc059d3f180e13c3ed7628b217f3ec526c4f5_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/logging-view-plugin-rhel8@sha256:a70a65d977a56a9c64d0b004bf6dc059d3f180e13c3ed7628b217f3ec526c4f5?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/logging-view-plugin-rhel8\u0026tag=v5.5.0-18"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/loki-rhel8-operator@sha256:727c2a538f036959c1547bd0184e3ee63a14614d27e0c22f20a8b4f5444ac497_ppc64le",
"product": {
"name": "openshift-logging/loki-rhel8-operator@sha256:727c2a538f036959c1547bd0184e3ee63a14614d27e0c22f20a8b4f5444ac497_ppc64le",
"product_id": "openshift-logging/loki-rhel8-operator@sha256:727c2a538f036959c1547bd0184e3ee63a14614d27e0c22f20a8b4f5444ac497_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/loki-rhel8-operator@sha256:727c2a538f036959c1547bd0184e3ee63a14614d27e0c22f20a8b4f5444ac497?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/loki-rhel8-operator\u0026tag=v5.5.0-33"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/lokistack-gateway-rhel8@sha256:03ce507ff04a810aa6297c4083641418d66b787f2403cc4580e55dfa2ae981bd_ppc64le",
"product": {
"name": "openshift-logging/lokistack-gateway-rhel8@sha256:03ce507ff04a810aa6297c4083641418d66b787f2403cc4580e55dfa2ae981bd_ppc64le",
"product_id": "openshift-logging/lokistack-gateway-rhel8@sha256:03ce507ff04a810aa6297c4083641418d66b787f2403cc4580e55dfa2ae981bd_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/lokistack-gateway-rhel8@sha256:03ce507ff04a810aa6297c4083641418d66b787f2403cc4580e55dfa2ae981bd?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/lokistack-gateway-rhel8\u0026tag=v0.1.0-9"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/opa-openshift-rhel8@sha256:b26fc09f9d6994aa83728279995f6e302a87e4d8822507ed7cba77679b339a45_ppc64le",
"product": {
"name": "openshift-logging/opa-openshift-rhel8@sha256:b26fc09f9d6994aa83728279995f6e302a87e4d8822507ed7cba77679b339a45_ppc64le",
"product_id": "openshift-logging/opa-openshift-rhel8@sha256:b26fc09f9d6994aa83728279995f6e302a87e4d8822507ed7cba77679b339a45_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/opa-openshift-rhel8@sha256:b26fc09f9d6994aa83728279995f6e302a87e4d8822507ed7cba77679b339a45?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/opa-openshift-rhel8\u0026tag=v0.1.0-7"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-logging/cluster-logging-rhel8-operator@sha256:c989e8278a7aa5a42769666251a53bf12cf1004dfe084a08884b72dd80754503_amd64",
"product": {
"name": "openshift-logging/cluster-logging-rhel8-operator@sha256:c989e8278a7aa5a42769666251a53bf12cf1004dfe084a08884b72dd80754503_amd64",
"product_id": "openshift-logging/cluster-logging-rhel8-operator@sha256:c989e8278a7aa5a42769666251a53bf12cf1004dfe084a08884b72dd80754503_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-rhel8-operator@sha256:c989e8278a7aa5a42769666251a53bf12cf1004dfe084a08884b72dd80754503?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/cluster-logging-rhel8-operator\u0026tag=v5.5.0-57"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/cluster-logging-operator-bundle@sha256:b45d27fdcd7f8c574b818fe96b35d54b4039d9638b603e59df18125dfe9e1b9d_amd64",
"product": {
"name": "openshift-logging/cluster-logging-operator-bundle@sha256:b45d27fdcd7f8c574b818fe96b35d54b4039d9638b603e59df18125dfe9e1b9d_amd64",
"product_id": "openshift-logging/cluster-logging-operator-bundle@sha256:b45d27fdcd7f8c574b818fe96b35d54b4039d9638b603e59df18125dfe9e1b9d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-operator-bundle@sha256:b45d27fdcd7f8c574b818fe96b35d54b4039d9638b603e59df18125dfe9e1b9d?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/cluster-logging-operator-bundle\u0026tag=v5.5.0-138"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch-rhel8-operator@sha256:1d6270489c06783cc427e661b903fffe4a514d115cff35f1b8d69b708c273768_amd64",
"product": {
"name": "openshift-logging/elasticsearch-rhel8-operator@sha256:1d6270489c06783cc427e661b903fffe4a514d115cff35f1b8d69b708c273768_amd64",
"product_id": "openshift-logging/elasticsearch-rhel8-operator@sha256:1d6270489c06783cc427e661b903fffe4a514d115cff35f1b8d69b708c273768_amd64",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch-rhel8-operator@sha256:1d6270489c06783cc427e661b903fffe4a514d115cff35f1b8d69b708c273768?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch-rhel8-operator\u0026tag=v5.5.0-40"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch-operator-bundle@sha256:bb9d01a501c0f268fd7ec7d99b5af455bd772dd251d24220e39988dc0e58ba69_amd64",
"product": {
"name": "openshift-logging/elasticsearch-operator-bundle@sha256:bb9d01a501c0f268fd7ec7d99b5af455bd772dd251d24220e39988dc0e58ba69_amd64",
"product_id": "openshift-logging/elasticsearch-operator-bundle@sha256:bb9d01a501c0f268fd7ec7d99b5af455bd772dd251d24220e39988dc0e58ba69_amd64",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch-operator-bundle@sha256:bb9d01a501c0f268fd7ec7d99b5af455bd772dd251d24220e39988dc0e58ba69?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch-operator-bundle\u0026tag=v5.5.0-154"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch-proxy-rhel8@sha256:c95c4d82c802b99ca245c27dadf85a5e3a77c135d0987066deb601bbfe766329_amd64",
"product": {
"name": "openshift-logging/elasticsearch-proxy-rhel8@sha256:c95c4d82c802b99ca245c27dadf85a5e3a77c135d0987066deb601bbfe766329_amd64",
"product_id": "openshift-logging/elasticsearch-proxy-rhel8@sha256:c95c4d82c802b99ca245c27dadf85a5e3a77c135d0987066deb601bbfe766329_amd64",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch-proxy-rhel8@sha256:c95c4d82c802b99ca245c27dadf85a5e3a77c135d0987066deb601bbfe766329?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel8\u0026tag=v1.0.0-261"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/log-file-metric-exporter-rhel8@sha256:9c0f6d27cde0ea7bdc73b3cd2e274a69254e515efe1dd677b75b12fd85bf6b6b_amd64",
"product": {
"name": "openshift-logging/log-file-metric-exporter-rhel8@sha256:9c0f6d27cde0ea7bdc73b3cd2e274a69254e515efe1dd677b75b12fd85bf6b6b_amd64",
"product_id": "openshift-logging/log-file-metric-exporter-rhel8@sha256:9c0f6d27cde0ea7bdc73b3cd2e274a69254e515efe1dd677b75b12fd85bf6b6b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/log-file-metric-exporter-rhel8@sha256:9c0f6d27cde0ea7bdc73b3cd2e274a69254e515efe1dd677b75b12fd85bf6b6b?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel8\u0026tag=v1.1.0-38"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-curator5-rhel8@sha256:2d09212bd92e600e267171f16ac657ef523072a7a8f08e3b723f8a885160b6a9_amd64",
"product": {
"name": "openshift-logging/logging-curator5-rhel8@sha256:2d09212bd92e600e267171f16ac657ef523072a7a8f08e3b723f8a885160b6a9_amd64",
"product_id": "openshift-logging/logging-curator5-rhel8@sha256:2d09212bd92e600e267171f16ac657ef523072a7a8f08e3b723f8a885160b6a9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/logging-curator5-rhel8@sha256:2d09212bd92e600e267171f16ac657ef523072a7a8f08e3b723f8a885160b6a9?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/logging-curator5-rhel8\u0026tag=v5.8.1-210"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch6-rhel8@sha256:cf2bf948529486ad1e61abdc38ed6f9f05733ed6bda441fc10bb88e366429669_amd64",
"product": {
"name": "openshift-logging/elasticsearch6-rhel8@sha256:cf2bf948529486ad1e61abdc38ed6f9f05733ed6bda441fc10bb88e366429669_amd64",
"product_id": "openshift-logging/elasticsearch6-rhel8@sha256:cf2bf948529486ad1e61abdc38ed6f9f05733ed6bda441fc10bb88e366429669_amd64",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch6-rhel8@sha256:cf2bf948529486ad1e61abdc38ed6f9f05733ed6bda441fc10bb88e366429669?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch6-rhel8\u0026tag=v6.8.1-230"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/eventrouter-rhel8@sha256:99d5577d86f78239db33862c6b7c8a7fbdd96094498a54c8e0a1c0c25f877382_amd64",
"product": {
"name": "openshift-logging/eventrouter-rhel8@sha256:99d5577d86f78239db33862c6b7c8a7fbdd96094498a54c8e0a1c0c25f877382_amd64",
"product_id": "openshift-logging/eventrouter-rhel8@sha256:99d5577d86f78239db33862c6b7c8a7fbdd96094498a54c8e0a1c0c25f877382_amd64",
"product_identification_helper": {
"purl": "pkg:oci/eventrouter-rhel8@sha256:99d5577d86f78239db33862c6b7c8a7fbdd96094498a54c8e0a1c0c25f877382?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/eventrouter-rhel8\u0026tag=v0.4.0-14"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/fluentd-rhel8@sha256:34de14f3735c84727e3bb6d1a6bb539ca1feb4932a06a6f897e81290e515c76a_amd64",
"product": {
"name": "openshift-logging/fluentd-rhel8@sha256:34de14f3735c84727e3bb6d1a6bb539ca1feb4932a06a6f897e81290e515c76a_amd64",
"product_id": "openshift-logging/fluentd-rhel8@sha256:34de14f3735c84727e3bb6d1a6bb539ca1feb4932a06a6f897e81290e515c76a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/fluentd-rhel8@sha256:34de14f3735c84727e3bb6d1a6bb539ca1feb4932a06a6f897e81290e515c76a?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/fluentd-rhel8\u0026tag=v1.14.6-29"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/kibana6-rhel8@sha256:c336fb7977ed76f54f47a888b8fd214c856c29f70b51559b3deed4cdcb7e2576_amd64",
"product": {
"name": "openshift-logging/kibana6-rhel8@sha256:c336fb7977ed76f54f47a888b8fd214c856c29f70b51559b3deed4cdcb7e2576_amd64",
"product_id": "openshift-logging/kibana6-rhel8@sha256:c336fb7977ed76f54f47a888b8fd214c856c29f70b51559b3deed4cdcb7e2576_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kibana6-rhel8@sha256:c336fb7977ed76f54f47a888b8fd214c856c29f70b51559b3deed4cdcb7e2576?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/kibana6-rhel8\u0026tag=v6.8.1-262"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-loki-rhel8@sha256:0e674b46f728792fda06861c6fe9282e380a6e59e940b59259e0c49236c17ac7_amd64",
"product": {
"name": "openshift-logging/logging-loki-rhel8@sha256:0e674b46f728792fda06861c6fe9282e380a6e59e940b59259e0c49236c17ac7_amd64",
"product_id": "openshift-logging/logging-loki-rhel8@sha256:0e674b46f728792fda06861c6fe9282e380a6e59e940b59259e0c49236c17ac7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/logging-loki-rhel8@sha256:0e674b46f728792fda06861c6fe9282e380a6e59e940b59259e0c49236c17ac7?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/logging-loki-rhel8\u0026tag=v2.6.1-9"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/vector-rhel8@sha256:a9a46f31fecc1d6aa0850118f592c8e23ad34e0c3fce89866db7a8535828a256_amd64",
"product": {
"name": "openshift-logging/vector-rhel8@sha256:a9a46f31fecc1d6aa0850118f592c8e23ad34e0c3fce89866db7a8535828a256_amd64",
"product_id": "openshift-logging/vector-rhel8@sha256:a9a46f31fecc1d6aa0850118f592c8e23ad34e0c3fce89866db7a8535828a256_amd64",
"product_identification_helper": {
"purl": "pkg:oci/vector-rhel8@sha256:a9a46f31fecc1d6aa0850118f592c8e23ad34e0c3fce89866db7a8535828a256?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/vector-rhel8\u0026tag=v0.21.0-8"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-view-plugin-rhel8@sha256:d7c3fec8db9a6bbdf264e21e0e9345204aac8c2ab6cbcebcc7ec219a26139a89_amd64",
"product": {
"name": "openshift-logging/logging-view-plugin-rhel8@sha256:d7c3fec8db9a6bbdf264e21e0e9345204aac8c2ab6cbcebcc7ec219a26139a89_amd64",
"product_id": "openshift-logging/logging-view-plugin-rhel8@sha256:d7c3fec8db9a6bbdf264e21e0e9345204aac8c2ab6cbcebcc7ec219a26139a89_amd64",
"product_identification_helper": {
"purl": "pkg:oci/logging-view-plugin-rhel8@sha256:d7c3fec8db9a6bbdf264e21e0e9345204aac8c2ab6cbcebcc7ec219a26139a89?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/logging-view-plugin-rhel8\u0026tag=v5.5.0-18"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/loki-operator-bundle@sha256:39d18c04f9d6091980640bea1869bdcb28574431c8374c731adaf0aa75f4dbaf_amd64",
"product": {
"name": "openshift-logging/loki-operator-bundle@sha256:39d18c04f9d6091980640bea1869bdcb28574431c8374c731adaf0aa75f4dbaf_amd64",
"product_id": "openshift-logging/loki-operator-bundle@sha256:39d18c04f9d6091980640bea1869bdcb28574431c8374c731adaf0aa75f4dbaf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/loki-operator-bundle@sha256:39d18c04f9d6091980640bea1869bdcb28574431c8374c731adaf0aa75f4dbaf?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/loki-operator-bundle\u0026tag=v5.5.0-147"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/loki-rhel8-operator@sha256:366d7d20ac5f7b577bd9f4f647b726b0731bc830f71d06dd98480f0300c45e83_amd64",
"product": {
"name": "openshift-logging/loki-rhel8-operator@sha256:366d7d20ac5f7b577bd9f4f647b726b0731bc830f71d06dd98480f0300c45e83_amd64",
"product_id": "openshift-logging/loki-rhel8-operator@sha256:366d7d20ac5f7b577bd9f4f647b726b0731bc830f71d06dd98480f0300c45e83_amd64",
"product_identification_helper": {
"purl": "pkg:oci/loki-rhel8-operator@sha256:366d7d20ac5f7b577bd9f4f647b726b0731bc830f71d06dd98480f0300c45e83?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/loki-rhel8-operator\u0026tag=v5.5.0-33"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/lokistack-gateway-rhel8@sha256:2de44e22a1e2f21c1851b0fc0bd264d508ec55637d15b5609a57c922596e597c_amd64",
"product": {
"name": "openshift-logging/lokistack-gateway-rhel8@sha256:2de44e22a1e2f21c1851b0fc0bd264d508ec55637d15b5609a57c922596e597c_amd64",
"product_id": "openshift-logging/lokistack-gateway-rhel8@sha256:2de44e22a1e2f21c1851b0fc0bd264d508ec55637d15b5609a57c922596e597c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/lokistack-gateway-rhel8@sha256:2de44e22a1e2f21c1851b0fc0bd264d508ec55637d15b5609a57c922596e597c?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/lokistack-gateway-rhel8\u0026tag=v0.1.0-9"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/opa-openshift-rhel8@sha256:b2b277023aede3d238ada29ef8e2733680aa4eb6e1e1a6e18ade52978bda1dc4_amd64",
"product": {
"name": "openshift-logging/opa-openshift-rhel8@sha256:b2b277023aede3d238ada29ef8e2733680aa4eb6e1e1a6e18ade52978bda1dc4_amd64",
"product_id": "openshift-logging/opa-openshift-rhel8@sha256:b2b277023aede3d238ada29ef8e2733680aa4eb6e1e1a6e18ade52978bda1dc4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/opa-openshift-rhel8@sha256:b2b277023aede3d238ada29ef8e2733680aa4eb6e1e1a6e18ade52978bda1dc4?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/opa-openshift-rhel8\u0026tag=v0.1.0-7"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-logging/cluster-logging-rhel8-operator@sha256:dfd44bf0b81480fc5af46af655474123d1c5335d9e8b363ce9cd2936bd320bea_arm64",
"product": {
"name": "openshift-logging/cluster-logging-rhel8-operator@sha256:dfd44bf0b81480fc5af46af655474123d1c5335d9e8b363ce9cd2936bd320bea_arm64",
"product_id": "openshift-logging/cluster-logging-rhel8-operator@sha256:dfd44bf0b81480fc5af46af655474123d1c5335d9e8b363ce9cd2936bd320bea_arm64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-rhel8-operator@sha256:dfd44bf0b81480fc5af46af655474123d1c5335d9e8b363ce9cd2936bd320bea?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/cluster-logging-rhel8-operator\u0026tag=v5.5.0-57"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch-rhel8-operator@sha256:7c4af9872c4f6ced3f3751af4cb7f31742d9c760ff04151330132704c4ce61fe_arm64",
"product": {
"name": "openshift-logging/elasticsearch-rhel8-operator@sha256:7c4af9872c4f6ced3f3751af4cb7f31742d9c760ff04151330132704c4ce61fe_arm64",
"product_id": "openshift-logging/elasticsearch-rhel8-operator@sha256:7c4af9872c4f6ced3f3751af4cb7f31742d9c760ff04151330132704c4ce61fe_arm64",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch-rhel8-operator@sha256:7c4af9872c4f6ced3f3751af4cb7f31742d9c760ff04151330132704c4ce61fe?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch-rhel8-operator\u0026tag=v5.5.0-40"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch-proxy-rhel8@sha256:0653f32f429a2a51e3c24175510482a61aca9ae897934008c7022867a290fffb_arm64",
"product": {
"name": "openshift-logging/elasticsearch-proxy-rhel8@sha256:0653f32f429a2a51e3c24175510482a61aca9ae897934008c7022867a290fffb_arm64",
"product_id": "openshift-logging/elasticsearch-proxy-rhel8@sha256:0653f32f429a2a51e3c24175510482a61aca9ae897934008c7022867a290fffb_arm64",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch-proxy-rhel8@sha256:0653f32f429a2a51e3c24175510482a61aca9ae897934008c7022867a290fffb?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel8\u0026tag=v1.0.0-261"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/log-file-metric-exporter-rhel8@sha256:8ab7813c4f5f4fcf14b45aaf657f0fa2e07d38e9fb41c2aea6d7bfe6dca23845_arm64",
"product": {
"name": "openshift-logging/log-file-metric-exporter-rhel8@sha256:8ab7813c4f5f4fcf14b45aaf657f0fa2e07d38e9fb41c2aea6d7bfe6dca23845_arm64",
"product_id": "openshift-logging/log-file-metric-exporter-rhel8@sha256:8ab7813c4f5f4fcf14b45aaf657f0fa2e07d38e9fb41c2aea6d7bfe6dca23845_arm64",
"product_identification_helper": {
"purl": "pkg:oci/log-file-metric-exporter-rhel8@sha256:8ab7813c4f5f4fcf14b45aaf657f0fa2e07d38e9fb41c2aea6d7bfe6dca23845?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel8\u0026tag=v1.1.0-38"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-curator5-rhel8@sha256:ef7c061171c2ec79aaca4a9085bbdcd69606fea64bcf74aab6698e7dba0595bd_arm64",
"product": {
"name": "openshift-logging/logging-curator5-rhel8@sha256:ef7c061171c2ec79aaca4a9085bbdcd69606fea64bcf74aab6698e7dba0595bd_arm64",
"product_id": "openshift-logging/logging-curator5-rhel8@sha256:ef7c061171c2ec79aaca4a9085bbdcd69606fea64bcf74aab6698e7dba0595bd_arm64",
"product_identification_helper": {
"purl": "pkg:oci/logging-curator5-rhel8@sha256:ef7c061171c2ec79aaca4a9085bbdcd69606fea64bcf74aab6698e7dba0595bd?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/logging-curator5-rhel8\u0026tag=v5.8.1-210"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch6-rhel8@sha256:4d31dc8eb58f9355bb98beb4a4544f7d3de3af072e8b7a232ad61f622c44beb2_arm64",
"product": {
"name": "openshift-logging/elasticsearch6-rhel8@sha256:4d31dc8eb58f9355bb98beb4a4544f7d3de3af072e8b7a232ad61f622c44beb2_arm64",
"product_id": "openshift-logging/elasticsearch6-rhel8@sha256:4d31dc8eb58f9355bb98beb4a4544f7d3de3af072e8b7a232ad61f622c44beb2_arm64",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch6-rhel8@sha256:4d31dc8eb58f9355bb98beb4a4544f7d3de3af072e8b7a232ad61f622c44beb2?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch6-rhel8\u0026tag=v6.8.1-230"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/eventrouter-rhel8@sha256:6002d16f9f652b6c32ff9b53935ba28f94df3de3a0c127316b023a4d22b54cba_arm64",
"product": {
"name": "openshift-logging/eventrouter-rhel8@sha256:6002d16f9f652b6c32ff9b53935ba28f94df3de3a0c127316b023a4d22b54cba_arm64",
"product_id": "openshift-logging/eventrouter-rhel8@sha256:6002d16f9f652b6c32ff9b53935ba28f94df3de3a0c127316b023a4d22b54cba_arm64",
"product_identification_helper": {
"purl": "pkg:oci/eventrouter-rhel8@sha256:6002d16f9f652b6c32ff9b53935ba28f94df3de3a0c127316b023a4d22b54cba?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/eventrouter-rhel8\u0026tag=v0.4.0-14"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/fluentd-rhel8@sha256:d6fa8c2547ef2c510233a4fdd598db569e959b64f0f1a373530b33e2c0533ba7_arm64",
"product": {
"name": "openshift-logging/fluentd-rhel8@sha256:d6fa8c2547ef2c510233a4fdd598db569e959b64f0f1a373530b33e2c0533ba7_arm64",
"product_id": "openshift-logging/fluentd-rhel8@sha256:d6fa8c2547ef2c510233a4fdd598db569e959b64f0f1a373530b33e2c0533ba7_arm64",
"product_identification_helper": {
"purl": "pkg:oci/fluentd-rhel8@sha256:d6fa8c2547ef2c510233a4fdd598db569e959b64f0f1a373530b33e2c0533ba7?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/fluentd-rhel8\u0026tag=v1.14.6-29"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/kibana6-rhel8@sha256:1326a7cd7e94f5c4da82643f47767e371127a5644ec0a6f54a82444952f10cc0_arm64",
"product": {
"name": "openshift-logging/kibana6-rhel8@sha256:1326a7cd7e94f5c4da82643f47767e371127a5644ec0a6f54a82444952f10cc0_arm64",
"product_id": "openshift-logging/kibana6-rhel8@sha256:1326a7cd7e94f5c4da82643f47767e371127a5644ec0a6f54a82444952f10cc0_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kibana6-rhel8@sha256:1326a7cd7e94f5c4da82643f47767e371127a5644ec0a6f54a82444952f10cc0?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/kibana6-rhel8\u0026tag=v6.8.1-262"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-loki-rhel8@sha256:67e705f850e13ba10caebd2270efc84bd9be1d5f34f1b2af68d74bb9a9b7713d_arm64",
"product": {
"name": "openshift-logging/logging-loki-rhel8@sha256:67e705f850e13ba10caebd2270efc84bd9be1d5f34f1b2af68d74bb9a9b7713d_arm64",
"product_id": "openshift-logging/logging-loki-rhel8@sha256:67e705f850e13ba10caebd2270efc84bd9be1d5f34f1b2af68d74bb9a9b7713d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/logging-loki-rhel8@sha256:67e705f850e13ba10caebd2270efc84bd9be1d5f34f1b2af68d74bb9a9b7713d?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/logging-loki-rhel8\u0026tag=v2.6.1-9"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/vector-rhel8@sha256:46efef6feb75414f57b9864cb76c00377a71599054a2b0467e837626ff5b33ad_arm64",
"product": {
"name": "openshift-logging/vector-rhel8@sha256:46efef6feb75414f57b9864cb76c00377a71599054a2b0467e837626ff5b33ad_arm64",
"product_id": "openshift-logging/vector-rhel8@sha256:46efef6feb75414f57b9864cb76c00377a71599054a2b0467e837626ff5b33ad_arm64",
"product_identification_helper": {
"purl": "pkg:oci/vector-rhel8@sha256:46efef6feb75414f57b9864cb76c00377a71599054a2b0467e837626ff5b33ad?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/vector-rhel8\u0026tag=v0.21.0-8"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-view-plugin-rhel8@sha256:ea6c97002b5fdf5e22a47f08a25811620004a63f02e597873601ba0246c6c5cc_arm64",
"product": {
"name": "openshift-logging/logging-view-plugin-rhel8@sha256:ea6c97002b5fdf5e22a47f08a25811620004a63f02e597873601ba0246c6c5cc_arm64",
"product_id": "openshift-logging/logging-view-plugin-rhel8@sha256:ea6c97002b5fdf5e22a47f08a25811620004a63f02e597873601ba0246c6c5cc_arm64",
"product_identification_helper": {
"purl": "pkg:oci/logging-view-plugin-rhel8@sha256:ea6c97002b5fdf5e22a47f08a25811620004a63f02e597873601ba0246c6c5cc?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/logging-view-plugin-rhel8\u0026tag=v5.5.0-18"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/loki-rhel8-operator@sha256:b4caab0d0a36e67f6e0c07be2cd4c0faf87691221943b7ee3042fd75f50f9096_arm64",
"product": {
"name": "openshift-logging/loki-rhel8-operator@sha256:b4caab0d0a36e67f6e0c07be2cd4c0faf87691221943b7ee3042fd75f50f9096_arm64",
"product_id": "openshift-logging/loki-rhel8-operator@sha256:b4caab0d0a36e67f6e0c07be2cd4c0faf87691221943b7ee3042fd75f50f9096_arm64",
"product_identification_helper": {
"purl": "pkg:oci/loki-rhel8-operator@sha256:b4caab0d0a36e67f6e0c07be2cd4c0faf87691221943b7ee3042fd75f50f9096?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/loki-rhel8-operator\u0026tag=v5.5.0-33"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/lokistack-gateway-rhel8@sha256:68ab07c5075fccf77f8e52602b751156d6a3dab7804ee3be578b12e3a9d767e8_arm64",
"product": {
"name": "openshift-logging/lokistack-gateway-rhel8@sha256:68ab07c5075fccf77f8e52602b751156d6a3dab7804ee3be578b12e3a9d767e8_arm64",
"product_id": "openshift-logging/lokistack-gateway-rhel8@sha256:68ab07c5075fccf77f8e52602b751156d6a3dab7804ee3be578b12e3a9d767e8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/lokistack-gateway-rhel8@sha256:68ab07c5075fccf77f8e52602b751156d6a3dab7804ee3be578b12e3a9d767e8?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/lokistack-gateway-rhel8\u0026tag=v0.1.0-9"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/opa-openshift-rhel8@sha256:86e326e282577dee8e5e92921757b6438e2adaf70e1d28af6a4b2930db8aa103_arm64",
"product": {
"name": "openshift-logging/opa-openshift-rhel8@sha256:86e326e282577dee8e5e92921757b6438e2adaf70e1d28af6a4b2930db8aa103_arm64",
"product_id": "openshift-logging/opa-openshift-rhel8@sha256:86e326e282577dee8e5e92921757b6438e2adaf70e1d28af6a4b2930db8aa103_arm64",
"product_identification_helper": {
"purl": "pkg:oci/opa-openshift-rhel8@sha256:86e326e282577dee8e5e92921757b6438e2adaf70e1d28af6a4b2930db8aa103?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/opa-openshift-rhel8\u0026tag=v0.1.0-7"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/cluster-logging-operator-bundle@sha256:b45d27fdcd7f8c574b818fe96b35d54b4039d9638b603e59df18125dfe9e1b9d_amd64 as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/cluster-logging-operator-bundle@sha256:b45d27fdcd7f8c574b818fe96b35d54b4039d9638b603e59df18125dfe9e1b9d_amd64"
},
"product_reference": "openshift-logging/cluster-logging-operator-bundle@sha256:b45d27fdcd7f8c574b818fe96b35d54b4039d9638b603e59df18125dfe9e1b9d_amd64",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/cluster-logging-rhel8-operator@sha256:7bdf236ddcf99e13e7b03eac3665f456ea520ea34658158b37b53f5515ea2941_ppc64le as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:7bdf236ddcf99e13e7b03eac3665f456ea520ea34658158b37b53f5515ea2941_ppc64le"
},
"product_reference": "openshift-logging/cluster-logging-rhel8-operator@sha256:7bdf236ddcf99e13e7b03eac3665f456ea520ea34658158b37b53f5515ea2941_ppc64le",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/cluster-logging-rhel8-operator@sha256:c989e8278a7aa5a42769666251a53bf12cf1004dfe084a08884b72dd80754503_amd64 as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:c989e8278a7aa5a42769666251a53bf12cf1004dfe084a08884b72dd80754503_amd64"
},
"product_reference": "openshift-logging/cluster-logging-rhel8-operator@sha256:c989e8278a7aa5a42769666251a53bf12cf1004dfe084a08884b72dd80754503_amd64",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/cluster-logging-rhel8-operator@sha256:d81f213923e8a162eb1a842ed04bedb23e8d069c18857ab63f9770ff222d635d_s390x as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:d81f213923e8a162eb1a842ed04bedb23e8d069c18857ab63f9770ff222d635d_s390x"
},
"product_reference": "openshift-logging/cluster-logging-rhel8-operator@sha256:d81f213923e8a162eb1a842ed04bedb23e8d069c18857ab63f9770ff222d635d_s390x",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/cluster-logging-rhel8-operator@sha256:dfd44bf0b81480fc5af46af655474123d1c5335d9e8b363ce9cd2936bd320bea_arm64 as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:dfd44bf0b81480fc5af46af655474123d1c5335d9e8b363ce9cd2936bd320bea_arm64"
},
"product_reference": "openshift-logging/cluster-logging-rhel8-operator@sha256:dfd44bf0b81480fc5af46af655474123d1c5335d9e8b363ce9cd2936bd320bea_arm64",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch-operator-bundle@sha256:bb9d01a501c0f268fd7ec7d99b5af455bd772dd251d24220e39988dc0e58ba69_amd64 as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/elasticsearch-operator-bundle@sha256:bb9d01a501c0f268fd7ec7d99b5af455bd772dd251d24220e39988dc0e58ba69_amd64"
},
"product_reference": "openshift-logging/elasticsearch-operator-bundle@sha256:bb9d01a501c0f268fd7ec7d99b5af455bd772dd251d24220e39988dc0e58ba69_amd64",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch-proxy-rhel8@sha256:0653f32f429a2a51e3c24175510482a61aca9ae897934008c7022867a290fffb_arm64 as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:0653f32f429a2a51e3c24175510482a61aca9ae897934008c7022867a290fffb_arm64"
},
"product_reference": "openshift-logging/elasticsearch-proxy-rhel8@sha256:0653f32f429a2a51e3c24175510482a61aca9ae897934008c7022867a290fffb_arm64",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch-proxy-rhel8@sha256:81949b18210e889ac7d7418d2ce9af7648e65f54daccf94ed372c2d6542921fa_s390x as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:81949b18210e889ac7d7418d2ce9af7648e65f54daccf94ed372c2d6542921fa_s390x"
},
"product_reference": "openshift-logging/elasticsearch-proxy-rhel8@sha256:81949b18210e889ac7d7418d2ce9af7648e65f54daccf94ed372c2d6542921fa_s390x",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch-proxy-rhel8@sha256:c591f62bbb9f0cc726db8fb475217b00f165ac7685d8b25343261d01fe452d17_ppc64le as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:c591f62bbb9f0cc726db8fb475217b00f165ac7685d8b25343261d01fe452d17_ppc64le"
},
"product_reference": "openshift-logging/elasticsearch-proxy-rhel8@sha256:c591f62bbb9f0cc726db8fb475217b00f165ac7685d8b25343261d01fe452d17_ppc64le",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch-proxy-rhel8@sha256:c95c4d82c802b99ca245c27dadf85a5e3a77c135d0987066deb601bbfe766329_amd64 as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:c95c4d82c802b99ca245c27dadf85a5e3a77c135d0987066deb601bbfe766329_amd64"
},
"product_reference": "openshift-logging/elasticsearch-proxy-rhel8@sha256:c95c4d82c802b99ca245c27dadf85a5e3a77c135d0987066deb601bbfe766329_amd64",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch-rhel8-operator@sha256:1d6270489c06783cc427e661b903fffe4a514d115cff35f1b8d69b708c273768_amd64 as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:1d6270489c06783cc427e661b903fffe4a514d115cff35f1b8d69b708c273768_amd64"
},
"product_reference": "openshift-logging/elasticsearch-rhel8-operator@sha256:1d6270489c06783cc427e661b903fffe4a514d115cff35f1b8d69b708c273768_amd64",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch-rhel8-operator@sha256:5a3b66bd077ee0402fcf70530f3843b51894101e5c88b13467dd9503b834527f_ppc64le as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:5a3b66bd077ee0402fcf70530f3843b51894101e5c88b13467dd9503b834527f_ppc64le"
},
"product_reference": "openshift-logging/elasticsearch-rhel8-operator@sha256:5a3b66bd077ee0402fcf70530f3843b51894101e5c88b13467dd9503b834527f_ppc64le",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch-rhel8-operator@sha256:7c4af9872c4f6ced3f3751af4cb7f31742d9c760ff04151330132704c4ce61fe_arm64 as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:7c4af9872c4f6ced3f3751af4cb7f31742d9c760ff04151330132704c4ce61fe_arm64"
},
"product_reference": "openshift-logging/elasticsearch-rhel8-operator@sha256:7c4af9872c4f6ced3f3751af4cb7f31742d9c760ff04151330132704c4ce61fe_arm64",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch-rhel8-operator@sha256:e29fb87e700f78c9fa05085be6f5e191d840246de0969fb2e52c845a268bf1d1_s390x as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:e29fb87e700f78c9fa05085be6f5e191d840246de0969fb2e52c845a268bf1d1_s390x"
},
"product_reference": "openshift-logging/elasticsearch-rhel8-operator@sha256:e29fb87e700f78c9fa05085be6f5e191d840246de0969fb2e52c845a268bf1d1_s390x",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch6-rhel8@sha256:4d31dc8eb58f9355bb98beb4a4544f7d3de3af072e8b7a232ad61f622c44beb2_arm64 as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:4d31dc8eb58f9355bb98beb4a4544f7d3de3af072e8b7a232ad61f622c44beb2_arm64"
},
"product_reference": "openshift-logging/elasticsearch6-rhel8@sha256:4d31dc8eb58f9355bb98beb4a4544f7d3de3af072e8b7a232ad61f622c44beb2_arm64",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch6-rhel8@sha256:95b249bc9d4cf115f70844235b2e58370d4dd2ace971201bc6518b3d9a40759a_ppc64le as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:95b249bc9d4cf115f70844235b2e58370d4dd2ace971201bc6518b3d9a40759a_ppc64le"
},
"product_reference": "openshift-logging/elasticsearch6-rhel8@sha256:95b249bc9d4cf115f70844235b2e58370d4dd2ace971201bc6518b3d9a40759a_ppc64le",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch6-rhel8@sha256:b7acb0b482ada86354467bbf0544a61ac385f59c865147cf986f9cb09db663b0_s390x as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:b7acb0b482ada86354467bbf0544a61ac385f59c865147cf986f9cb09db663b0_s390x"
},
"product_reference": "openshift-logging/elasticsearch6-rhel8@sha256:b7acb0b482ada86354467bbf0544a61ac385f59c865147cf986f9cb09db663b0_s390x",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch6-rhel8@sha256:cf2bf948529486ad1e61abdc38ed6f9f05733ed6bda441fc10bb88e366429669_amd64 as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:cf2bf948529486ad1e61abdc38ed6f9f05733ed6bda441fc10bb88e366429669_amd64"
},
"product_reference": "openshift-logging/elasticsearch6-rhel8@sha256:cf2bf948529486ad1e61abdc38ed6f9f05733ed6bda441fc10bb88e366429669_amd64",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/eventrouter-rhel8@sha256:48b4fe535691ed432867c9bc1ac4ec734f1e6b5ef51d11a702b99f2d1623840f_ppc64le as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:48b4fe535691ed432867c9bc1ac4ec734f1e6b5ef51d11a702b99f2d1623840f_ppc64le"
},
"product_reference": "openshift-logging/eventrouter-rhel8@sha256:48b4fe535691ed432867c9bc1ac4ec734f1e6b5ef51d11a702b99f2d1623840f_ppc64le",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/eventrouter-rhel8@sha256:593394515d7cbc4111d1a67703c9c083a8cb6e0d6d6f8e5b914f810e003982ca_s390x as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:593394515d7cbc4111d1a67703c9c083a8cb6e0d6d6f8e5b914f810e003982ca_s390x"
},
"product_reference": "openshift-logging/eventrouter-rhel8@sha256:593394515d7cbc4111d1a67703c9c083a8cb6e0d6d6f8e5b914f810e003982ca_s390x",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/eventrouter-rhel8@sha256:6002d16f9f652b6c32ff9b53935ba28f94df3de3a0c127316b023a4d22b54cba_arm64 as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:6002d16f9f652b6c32ff9b53935ba28f94df3de3a0c127316b023a4d22b54cba_arm64"
},
"product_reference": "openshift-logging/eventrouter-rhel8@sha256:6002d16f9f652b6c32ff9b53935ba28f94df3de3a0c127316b023a4d22b54cba_arm64",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/eventrouter-rhel8@sha256:99d5577d86f78239db33862c6b7c8a7fbdd96094498a54c8e0a1c0c25f877382_amd64 as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:99d5577d86f78239db33862c6b7c8a7fbdd96094498a54c8e0a1c0c25f877382_amd64"
},
"product_reference": "openshift-logging/eventrouter-rhel8@sha256:99d5577d86f78239db33862c6b7c8a7fbdd96094498a54c8e0a1c0c25f877382_amd64",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/fluentd-rhel8@sha256:3317d3fc0bde3446879c47e65412a893d7b8106f7f8efba6dde4a1e04ea090de_s390x as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:3317d3fc0bde3446879c47e65412a893d7b8106f7f8efba6dde4a1e04ea090de_s390x"
},
"product_reference": "openshift-logging/fluentd-rhel8@sha256:3317d3fc0bde3446879c47e65412a893d7b8106f7f8efba6dde4a1e04ea090de_s390x",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/fluentd-rhel8@sha256:34de14f3735c84727e3bb6d1a6bb539ca1feb4932a06a6f897e81290e515c76a_amd64 as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:34de14f3735c84727e3bb6d1a6bb539ca1feb4932a06a6f897e81290e515c76a_amd64"
},
"product_reference": "openshift-logging/fluentd-rhel8@sha256:34de14f3735c84727e3bb6d1a6bb539ca1feb4932a06a6f897e81290e515c76a_amd64",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/fluentd-rhel8@sha256:5e8b7ca30990ee8e13700de3f82572858c563d84609158bc4d167c12d80aee26_ppc64le as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:5e8b7ca30990ee8e13700de3f82572858c563d84609158bc4d167c12d80aee26_ppc64le"
},
"product_reference": "openshift-logging/fluentd-rhel8@sha256:5e8b7ca30990ee8e13700de3f82572858c563d84609158bc4d167c12d80aee26_ppc64le",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/fluentd-rhel8@sha256:d6fa8c2547ef2c510233a4fdd598db569e959b64f0f1a373530b33e2c0533ba7_arm64 as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:d6fa8c2547ef2c510233a4fdd598db569e959b64f0f1a373530b33e2c0533ba7_arm64"
},
"product_reference": "openshift-logging/fluentd-rhel8@sha256:d6fa8c2547ef2c510233a4fdd598db569e959b64f0f1a373530b33e2c0533ba7_arm64",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/kibana6-rhel8@sha256:1326a7cd7e94f5c4da82643f47767e371127a5644ec0a6f54a82444952f10cc0_arm64 as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:1326a7cd7e94f5c4da82643f47767e371127a5644ec0a6f54a82444952f10cc0_arm64"
},
"product_reference": "openshift-logging/kibana6-rhel8@sha256:1326a7cd7e94f5c4da82643f47767e371127a5644ec0a6f54a82444952f10cc0_arm64",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/kibana6-rhel8@sha256:1b0a964d266938f06fd6983bdd710222b0ce66bb6036ff992186940b31320ff0_ppc64le as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:1b0a964d266938f06fd6983bdd710222b0ce66bb6036ff992186940b31320ff0_ppc64le"
},
"product_reference": "openshift-logging/kibana6-rhel8@sha256:1b0a964d266938f06fd6983bdd710222b0ce66bb6036ff992186940b31320ff0_ppc64le",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/kibana6-rhel8@sha256:82f069b742b7151b4e0f5119f100682200fc8b2561e9444132257df28601550c_s390x as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:82f069b742b7151b4e0f5119f100682200fc8b2561e9444132257df28601550c_s390x"
},
"product_reference": "openshift-logging/kibana6-rhel8@sha256:82f069b742b7151b4e0f5119f100682200fc8b2561e9444132257df28601550c_s390x",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/kibana6-rhel8@sha256:c336fb7977ed76f54f47a888b8fd214c856c29f70b51559b3deed4cdcb7e2576_amd64 as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:c336fb7977ed76f54f47a888b8fd214c856c29f70b51559b3deed4cdcb7e2576_amd64"
},
"product_reference": "openshift-logging/kibana6-rhel8@sha256:c336fb7977ed76f54f47a888b8fd214c856c29f70b51559b3deed4cdcb7e2576_amd64",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/log-file-metric-exporter-rhel8@sha256:25ac084cc90c7fd7fdd77b7c3267a16cafa88998f115d839bea4f759cb60545f_ppc64le as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:25ac084cc90c7fd7fdd77b7c3267a16cafa88998f115d839bea4f759cb60545f_ppc64le"
},
"product_reference": "openshift-logging/log-file-metric-exporter-rhel8@sha256:25ac084cc90c7fd7fdd77b7c3267a16cafa88998f115d839bea4f759cb60545f_ppc64le",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/log-file-metric-exporter-rhel8@sha256:781d52334d01ac30aeebd31d59a66677e947639cebb3322de8e53a44ab9e491e_s390x as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:781d52334d01ac30aeebd31d59a66677e947639cebb3322de8e53a44ab9e491e_s390x"
},
"product_reference": "openshift-logging/log-file-metric-exporter-rhel8@sha256:781d52334d01ac30aeebd31d59a66677e947639cebb3322de8e53a44ab9e491e_s390x",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/log-file-metric-exporter-rhel8@sha256:8ab7813c4f5f4fcf14b45aaf657f0fa2e07d38e9fb41c2aea6d7bfe6dca23845_arm64 as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:8ab7813c4f5f4fcf14b45aaf657f0fa2e07d38e9fb41c2aea6d7bfe6dca23845_arm64"
},
"product_reference": "openshift-logging/log-file-metric-exporter-rhel8@sha256:8ab7813c4f5f4fcf14b45aaf657f0fa2e07d38e9fb41c2aea6d7bfe6dca23845_arm64",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/log-file-metric-exporter-rhel8@sha256:9c0f6d27cde0ea7bdc73b3cd2e274a69254e515efe1dd677b75b12fd85bf6b6b_amd64 as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:9c0f6d27cde0ea7bdc73b3cd2e274a69254e515efe1dd677b75b12fd85bf6b6b_amd64"
},
"product_reference": "openshift-logging/log-file-metric-exporter-rhel8@sha256:9c0f6d27cde0ea7bdc73b3cd2e274a69254e515efe1dd677b75b12fd85bf6b6b_amd64",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-curator5-rhel8@sha256:2d09212bd92e600e267171f16ac657ef523072a7a8f08e3b723f8a885160b6a9_amd64 as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:2d09212bd92e600e267171f16ac657ef523072a7a8f08e3b723f8a885160b6a9_amd64"
},
"product_reference": "openshift-logging/logging-curator5-rhel8@sha256:2d09212bd92e600e267171f16ac657ef523072a7a8f08e3b723f8a885160b6a9_amd64",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-curator5-rhel8@sha256:3682ad9746f7df5b9c5b0f65618279fec68691446cb440d003c121afd5949e46_ppc64le as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:3682ad9746f7df5b9c5b0f65618279fec68691446cb440d003c121afd5949e46_ppc64le"
},
"product_reference": "openshift-logging/logging-curator5-rhel8@sha256:3682ad9746f7df5b9c5b0f65618279fec68691446cb440d003c121afd5949e46_ppc64le",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-curator5-rhel8@sha256:d18eba5df394859cff7ee2e8c9d0a7405b74a0a6fb4a81272b9c5fd9e4afc804_s390x as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:d18eba5df394859cff7ee2e8c9d0a7405b74a0a6fb4a81272b9c5fd9e4afc804_s390x"
},
"product_reference": "openshift-logging/logging-curator5-rhel8@sha256:d18eba5df394859cff7ee2e8c9d0a7405b74a0a6fb4a81272b9c5fd9e4afc804_s390x",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-curator5-rhel8@sha256:ef7c061171c2ec79aaca4a9085bbdcd69606fea64bcf74aab6698e7dba0595bd_arm64 as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:ef7c061171c2ec79aaca4a9085bbdcd69606fea64bcf74aab6698e7dba0595bd_arm64"
},
"product_reference": "openshift-logging/logging-curator5-rhel8@sha256:ef7c061171c2ec79aaca4a9085bbdcd69606fea64bcf74aab6698e7dba0595bd_arm64",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-loki-rhel8@sha256:0e674b46f728792fda06861c6fe9282e380a6e59e940b59259e0c49236c17ac7_amd64 as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:0e674b46f728792fda06861c6fe9282e380a6e59e940b59259e0c49236c17ac7_amd64"
},
"product_reference": "openshift-logging/logging-loki-rhel8@sha256:0e674b46f728792fda06861c6fe9282e380a6e59e940b59259e0c49236c17ac7_amd64",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-loki-rhel8@sha256:67e705f850e13ba10caebd2270efc84bd9be1d5f34f1b2af68d74bb9a9b7713d_arm64 as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:67e705f850e13ba10caebd2270efc84bd9be1d5f34f1b2af68d74bb9a9b7713d_arm64"
},
"product_reference": "openshift-logging/logging-loki-rhel8@sha256:67e705f850e13ba10caebd2270efc84bd9be1d5f34f1b2af68d74bb9a9b7713d_arm64",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-loki-rhel8@sha256:757febef9d392c49c61de2712e6dd9fa59bb21d2a64abec3a26df27c737ce8d4_s390x as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:757febef9d392c49c61de2712e6dd9fa59bb21d2a64abec3a26df27c737ce8d4_s390x"
},
"product_reference": "openshift-logging/logging-loki-rhel8@sha256:757febef9d392c49c61de2712e6dd9fa59bb21d2a64abec3a26df27c737ce8d4_s390x",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-loki-rhel8@sha256:7e0af82c1644ee06039c4d56f00db279d4c83f2db9ba624c71353db3032a114c_ppc64le as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:7e0af82c1644ee06039c4d56f00db279d4c83f2db9ba624c71353db3032a114c_ppc64le"
},
"product_reference": "openshift-logging/logging-loki-rhel8@sha256:7e0af82c1644ee06039c4d56f00db279d4c83f2db9ba624c71353db3032a114c_ppc64le",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-view-plugin-rhel8@sha256:a70a65d977a56a9c64d0b004bf6dc059d3f180e13c3ed7628b217f3ec526c4f5_ppc64le as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:a70a65d977a56a9c64d0b004bf6dc059d3f180e13c3ed7628b217f3ec526c4f5_ppc64le"
},
"product_reference": "openshift-logging/logging-view-plugin-rhel8@sha256:a70a65d977a56a9c64d0b004bf6dc059d3f180e13c3ed7628b217f3ec526c4f5_ppc64le",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-view-plugin-rhel8@sha256:c069e554ec59588384d4829d3dd7b5e50972b5a215433953b8d4cd9eb6f142c5_s390x as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:c069e554ec59588384d4829d3dd7b5e50972b5a215433953b8d4cd9eb6f142c5_s390x"
},
"product_reference": "openshift-logging/logging-view-plugin-rhel8@sha256:c069e554ec59588384d4829d3dd7b5e50972b5a215433953b8d4cd9eb6f142c5_s390x",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-view-plugin-rhel8@sha256:d7c3fec8db9a6bbdf264e21e0e9345204aac8c2ab6cbcebcc7ec219a26139a89_amd64 as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:d7c3fec8db9a6bbdf264e21e0e9345204aac8c2ab6cbcebcc7ec219a26139a89_amd64"
},
"product_reference": "openshift-logging/logging-view-plugin-rhel8@sha256:d7c3fec8db9a6bbdf264e21e0e9345204aac8c2ab6cbcebcc7ec219a26139a89_amd64",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-view-plugin-rhel8@sha256:ea6c97002b5fdf5e22a47f08a25811620004a63f02e597873601ba0246c6c5cc_arm64 as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:ea6c97002b5fdf5e22a47f08a25811620004a63f02e597873601ba0246c6c5cc_arm64"
},
"product_reference": "openshift-logging/logging-view-plugin-rhel8@sha256:ea6c97002b5fdf5e22a47f08a25811620004a63f02e597873601ba0246c6c5cc_arm64",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/loki-operator-bundle@sha256:39d18c04f9d6091980640bea1869bdcb28574431c8374c731adaf0aa75f4dbaf_amd64 as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/loki-operator-bundle@sha256:39d18c04f9d6091980640bea1869bdcb28574431c8374c731adaf0aa75f4dbaf_amd64"
},
"product_reference": "openshift-logging/loki-operator-bundle@sha256:39d18c04f9d6091980640bea1869bdcb28574431c8374c731adaf0aa75f4dbaf_amd64",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/loki-rhel8-operator@sha256:366d7d20ac5f7b577bd9f4f647b726b0731bc830f71d06dd98480f0300c45e83_amd64 as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:366d7d20ac5f7b577bd9f4f647b726b0731bc830f71d06dd98480f0300c45e83_amd64"
},
"product_reference": "openshift-logging/loki-rhel8-operator@sha256:366d7d20ac5f7b577bd9f4f647b726b0731bc830f71d06dd98480f0300c45e83_amd64",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/loki-rhel8-operator@sha256:4e3af348f830133362ce9a859c1d7025b12e57f0394c352859933fcdf7f6a226_s390x as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:4e3af348f830133362ce9a859c1d7025b12e57f0394c352859933fcdf7f6a226_s390x"
},
"product_reference": "openshift-logging/loki-rhel8-operator@sha256:4e3af348f830133362ce9a859c1d7025b12e57f0394c352859933fcdf7f6a226_s390x",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/loki-rhel8-operator@sha256:727c2a538f036959c1547bd0184e3ee63a14614d27e0c22f20a8b4f5444ac497_ppc64le as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:727c2a538f036959c1547bd0184e3ee63a14614d27e0c22f20a8b4f5444ac497_ppc64le"
},
"product_reference": "openshift-logging/loki-rhel8-operator@sha256:727c2a538f036959c1547bd0184e3ee63a14614d27e0c22f20a8b4f5444ac497_ppc64le",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/loki-rhel8-operator@sha256:b4caab0d0a36e67f6e0c07be2cd4c0faf87691221943b7ee3042fd75f50f9096_arm64 as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:b4caab0d0a36e67f6e0c07be2cd4c0faf87691221943b7ee3042fd75f50f9096_arm64"
},
"product_reference": "openshift-logging/loki-rhel8-operator@sha256:b4caab0d0a36e67f6e0c07be2cd4c0faf87691221943b7ee3042fd75f50f9096_arm64",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/lokistack-gateway-rhel8@sha256:03ce507ff04a810aa6297c4083641418d66b787f2403cc4580e55dfa2ae981bd_ppc64le as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:03ce507ff04a810aa6297c4083641418d66b787f2403cc4580e55dfa2ae981bd_ppc64le"
},
"product_reference": "openshift-logging/lokistack-gateway-rhel8@sha256:03ce507ff04a810aa6297c4083641418d66b787f2403cc4580e55dfa2ae981bd_ppc64le",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/lokistack-gateway-rhel8@sha256:2de44e22a1e2f21c1851b0fc0bd264d508ec55637d15b5609a57c922596e597c_amd64 as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:2de44e22a1e2f21c1851b0fc0bd264d508ec55637d15b5609a57c922596e597c_amd64"
},
"product_reference": "openshift-logging/lokistack-gateway-rhel8@sha256:2de44e22a1e2f21c1851b0fc0bd264d508ec55637d15b5609a57c922596e597c_amd64",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/lokistack-gateway-rhel8@sha256:68ab07c5075fccf77f8e52602b751156d6a3dab7804ee3be578b12e3a9d767e8_arm64 as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:68ab07c5075fccf77f8e52602b751156d6a3dab7804ee3be578b12e3a9d767e8_arm64"
},
"product_reference": "openshift-logging/lokistack-gateway-rhel8@sha256:68ab07c5075fccf77f8e52602b751156d6a3dab7804ee3be578b12e3a9d767e8_arm64",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/lokistack-gateway-rhel8@sha256:cb75c249014ca7e344dc184355e0c05ed2a82ec1b3ba097e83ae6481f8be8682_s390x as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:cb75c249014ca7e344dc184355e0c05ed2a82ec1b3ba097e83ae6481f8be8682_s390x"
},
"product_reference": "openshift-logging/lokistack-gateway-rhel8@sha256:cb75c249014ca7e344dc184355e0c05ed2a82ec1b3ba097e83ae6481f8be8682_s390x",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/opa-openshift-rhel8@sha256:184b8163e6964c788e316d1f26c91e9452a3362d04b0192dbcccacde2d6ff0ec_s390x as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:184b8163e6964c788e316d1f26c91e9452a3362d04b0192dbcccacde2d6ff0ec_s390x"
},
"product_reference": "openshift-logging/opa-openshift-rhel8@sha256:184b8163e6964c788e316d1f26c91e9452a3362d04b0192dbcccacde2d6ff0ec_s390x",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/opa-openshift-rhel8@sha256:86e326e282577dee8e5e92921757b6438e2adaf70e1d28af6a4b2930db8aa103_arm64 as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:86e326e282577dee8e5e92921757b6438e2adaf70e1d28af6a4b2930db8aa103_arm64"
},
"product_reference": "openshift-logging/opa-openshift-rhel8@sha256:86e326e282577dee8e5e92921757b6438e2adaf70e1d28af6a4b2930db8aa103_arm64",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/opa-openshift-rhel8@sha256:b26fc09f9d6994aa83728279995f6e302a87e4d8822507ed7cba77679b339a45_ppc64le as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:b26fc09f9d6994aa83728279995f6e302a87e4d8822507ed7cba77679b339a45_ppc64le"
},
"product_reference": "openshift-logging/opa-openshift-rhel8@sha256:b26fc09f9d6994aa83728279995f6e302a87e4d8822507ed7cba77679b339a45_ppc64le",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/opa-openshift-rhel8@sha256:b2b277023aede3d238ada29ef8e2733680aa4eb6e1e1a6e18ade52978bda1dc4_amd64 as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:b2b277023aede3d238ada29ef8e2733680aa4eb6e1e1a6e18ade52978bda1dc4_amd64"
},
"product_reference": "openshift-logging/opa-openshift-rhel8@sha256:b2b277023aede3d238ada29ef8e2733680aa4eb6e1e1a6e18ade52978bda1dc4_amd64",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/vector-rhel8@sha256:46efef6feb75414f57b9864cb76c00377a71599054a2b0467e837626ff5b33ad_arm64 as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:46efef6feb75414f57b9864cb76c00377a71599054a2b0467e837626ff5b33ad_arm64"
},
"product_reference": "openshift-logging/vector-rhel8@sha256:46efef6feb75414f57b9864cb76c00377a71599054a2b0467e837626ff5b33ad_arm64",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/vector-rhel8@sha256:8f2eb1e00cf1491b71180612bae76753d36936fbd4b413c48d98a9273e0b30a7_s390x as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:8f2eb1e00cf1491b71180612bae76753d36936fbd4b413c48d98a9273e0b30a7_s390x"
},
"product_reference": "openshift-logging/vector-rhel8@sha256:8f2eb1e00cf1491b71180612bae76753d36936fbd4b413c48d98a9273e0b30a7_s390x",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/vector-rhel8@sha256:a9a46f31fecc1d6aa0850118f592c8e23ad34e0c3fce89866db7a8535828a256_amd64 as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:a9a46f31fecc1d6aa0850118f592c8e23ad34e0c3fce89866db7a8535828a256_amd64"
},
"product_reference": "openshift-logging/vector-rhel8@sha256:a9a46f31fecc1d6aa0850118f592c8e23ad34e0c3fce89866db7a8535828a256_amd64",
"relates_to_product_reference": "8Base-RHOL-5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/vector-rhel8@sha256:cd0f0a4a31ea584ae35afa99573b070a4b4eedfa38395b4507342134d0f3ad82_ppc64le as a component of RHOL 5.5 for RHEL 8",
"product_id": "8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:cd0f0a4a31ea584ae35afa99573b070a4b4eedfa38395b4507342134d0f3ad82_ppc64le"
},
"product_reference": "openshift-logging/vector-rhel8@sha256:cd0f0a4a31ea584ae35afa99573b070a4b4eedfa38395b4507342134d0f3ad82_ppc64le",
"relates_to_product_reference": "8Base-RHOL-5.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-38561",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2022-06-23T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHOL-5.5:openshift-logging/cluster-logging-operator-bundle@sha256:b45d27fdcd7f8c574b818fe96b35d54b4039d9638b603e59df18125dfe9e1b9d_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-operator-bundle@sha256:bb9d01a501c0f268fd7ec7d99b5af455bd772dd251d24220e39988dc0e58ba69_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:0653f32f429a2a51e3c24175510482a61aca9ae897934008c7022867a290fffb_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:81949b18210e889ac7d7418d2ce9af7648e65f54daccf94ed372c2d6542921fa_s390x",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:c591f62bbb9f0cc726db8fb475217b00f165ac7685d8b25343261d01fe452d17_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:c95c4d82c802b99ca245c27dadf85a5e3a77c135d0987066deb601bbfe766329_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:1d6270489c06783cc427e661b903fffe4a514d115cff35f1b8d69b708c273768_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:5a3b66bd077ee0402fcf70530f3843b51894101e5c88b13467dd9503b834527f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:7c4af9872c4f6ced3f3751af4cb7f31742d9c760ff04151330132704c4ce61fe_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:e29fb87e700f78c9fa05085be6f5e191d840246de0969fb2e52c845a268bf1d1_s390x",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:4d31dc8eb58f9355bb98beb4a4544f7d3de3af072e8b7a232ad61f622c44beb2_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:95b249bc9d4cf115f70844235b2e58370d4dd2ace971201bc6518b3d9a40759a_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:b7acb0b482ada86354467bbf0544a61ac385f59c865147cf986f9cb09db663b0_s390x",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:cf2bf948529486ad1e61abdc38ed6f9f05733ed6bda441fc10bb88e366429669_amd64",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:48b4fe535691ed432867c9bc1ac4ec734f1e6b5ef51d11a702b99f2d1623840f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:593394515d7cbc4111d1a67703c9c083a8cb6e0d6d6f8e5b914f810e003982ca_s390x",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:6002d16f9f652b6c32ff9b53935ba28f94df3de3a0c127316b023a4d22b54cba_arm64",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:99d5577d86f78239db33862c6b7c8a7fbdd96094498a54c8e0a1c0c25f877382_amd64",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:3317d3fc0bde3446879c47e65412a893d7b8106f7f8efba6dde4a1e04ea090de_s390x",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:34de14f3735c84727e3bb6d1a6bb539ca1feb4932a06a6f897e81290e515c76a_amd64",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:5e8b7ca30990ee8e13700de3f82572858c563d84609158bc4d167c12d80aee26_ppc64le",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:d6fa8c2547ef2c510233a4fdd598db569e959b64f0f1a373530b33e2c0533ba7_arm64",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:1326a7cd7e94f5c4da82643f47767e371127a5644ec0a6f54a82444952f10cc0_arm64",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:1b0a964d266938f06fd6983bdd710222b0ce66bb6036ff992186940b31320ff0_ppc64le",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:82f069b742b7151b4e0f5119f100682200fc8b2561e9444132257df28601550c_s390x",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:c336fb7977ed76f54f47a888b8fd214c856c29f70b51559b3deed4cdcb7e2576_amd64",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:25ac084cc90c7fd7fdd77b7c3267a16cafa88998f115d839bea4f759cb60545f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:781d52334d01ac30aeebd31d59a66677e947639cebb3322de8e53a44ab9e491e_s390x",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:8ab7813c4f5f4fcf14b45aaf657f0fa2e07d38e9fb41c2aea6d7bfe6dca23845_arm64",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:9c0f6d27cde0ea7bdc73b3cd2e274a69254e515efe1dd677b75b12fd85bf6b6b_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:2d09212bd92e600e267171f16ac657ef523072a7a8f08e3b723f8a885160b6a9_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:3682ad9746f7df5b9c5b0f65618279fec68691446cb440d003c121afd5949e46_ppc64le",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:d18eba5df394859cff7ee2e8c9d0a7405b74a0a6fb4a81272b9c5fd9e4afc804_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:ef7c061171c2ec79aaca4a9085bbdcd69606fea64bcf74aab6698e7dba0595bd_arm64",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:0e674b46f728792fda06861c6fe9282e380a6e59e940b59259e0c49236c17ac7_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:67e705f850e13ba10caebd2270efc84bd9be1d5f34f1b2af68d74bb9a9b7713d_arm64",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:757febef9d392c49c61de2712e6dd9fa59bb21d2a64abec3a26df27c737ce8d4_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:7e0af82c1644ee06039c4d56f00db279d4c83f2db9ba624c71353db3032a114c_ppc64le",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:a70a65d977a56a9c64d0b004bf6dc059d3f180e13c3ed7628b217f3ec526c4f5_ppc64le",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:c069e554ec59588384d4829d3dd7b5e50972b5a215433953b8d4cd9eb6f142c5_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:d7c3fec8db9a6bbdf264e21e0e9345204aac8c2ab6cbcebcc7ec219a26139a89_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:ea6c97002b5fdf5e22a47f08a25811620004a63f02e597873601ba0246c6c5cc_arm64",
"8Base-RHOL-5.5:openshift-logging/loki-operator-bundle@sha256:39d18c04f9d6091980640bea1869bdcb28574431c8374c731adaf0aa75f4dbaf_amd64",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:366d7d20ac5f7b577bd9f4f647b726b0731bc830f71d06dd98480f0300c45e83_amd64",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:4e3af348f830133362ce9a859c1d7025b12e57f0394c352859933fcdf7f6a226_s390x",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:727c2a538f036959c1547bd0184e3ee63a14614d27e0c22f20a8b4f5444ac497_ppc64le",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:b4caab0d0a36e67f6e0c07be2cd4c0faf87691221943b7ee3042fd75f50f9096_arm64",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:03ce507ff04a810aa6297c4083641418d66b787f2403cc4580e55dfa2ae981bd_ppc64le",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:2de44e22a1e2f21c1851b0fc0bd264d508ec55637d15b5609a57c922596e597c_amd64",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:68ab07c5075fccf77f8e52602b751156d6a3dab7804ee3be578b12e3a9d767e8_arm64",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:cb75c249014ca7e344dc184355e0c05ed2a82ec1b3ba097e83ae6481f8be8682_s390x",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:184b8163e6964c788e316d1f26c91e9452a3362d04b0192dbcccacde2d6ff0ec_s390x",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:86e326e282577dee8e5e92921757b6438e2adaf70e1d28af6a4b2930db8aa103_arm64",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:b26fc09f9d6994aa83728279995f6e302a87e4d8822507ed7cba77679b339a45_ppc64le",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:b2b277023aede3d238ada29ef8e2733680aa4eb6e1e1a6e18ade52978bda1dc4_amd64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:46efef6feb75414f57b9864cb76c00377a71599054a2b0467e837626ff5b33ad_arm64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:8f2eb1e00cf1491b71180612bae76753d36936fbd4b413c48d98a9273e0b30a7_s390x",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:a9a46f31fecc1d6aa0850118f592c8e23ad34e0c3fce89866db7a8535828a256_amd64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:cd0f0a4a31ea584ae35afa99573b070a4b4eedfa38395b4507342134d0f3ad82_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2100495"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. The language package for go language can panic due to an out-of-bounds read when an incorrectly formatted language tag is being parsed. This flaw allows an attacker to cause applications using this package to parse untrusted input data to crash, leading to a denial of service of the affected component.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: out-of-bounds read in golang.org/x/text/language leads to DoS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw may be triggered only by accepting untrusted user input to the vulnerable golang\u0027s library. The overall DoS attack vector depends directly on how the library\u0027s input is exposed by the consuming application, thus Red Hat rates impact as Moderate.\n\nIn Red Hat Advanced Cluster Management for Kubernetes (RHACM) 2.5 version, the registration-operator, lighthouse-coredns, lighthouse-agent, gatekeeper-operator, and discovery-operator components are affected by this flaw, but the rest of the components are using an already patched version and are unaffected. For 2.4 and previous versions of Red Hat Advanced Cluster Management for Kubernetes (RHACM), most of the components are affected.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:7bdf236ddcf99e13e7b03eac3665f456ea520ea34658158b37b53f5515ea2941_ppc64le",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:c989e8278a7aa5a42769666251a53bf12cf1004dfe084a08884b72dd80754503_amd64",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:d81f213923e8a162eb1a842ed04bedb23e8d069c18857ab63f9770ff222d635d_s390x",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:dfd44bf0b81480fc5af46af655474123d1c5335d9e8b363ce9cd2936bd320bea_arm64"
],
"known_not_affected": [
"8Base-RHOL-5.5:openshift-logging/cluster-logging-operator-bundle@sha256:b45d27fdcd7f8c574b818fe96b35d54b4039d9638b603e59df18125dfe9e1b9d_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-operator-bundle@sha256:bb9d01a501c0f268fd7ec7d99b5af455bd772dd251d24220e39988dc0e58ba69_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:0653f32f429a2a51e3c24175510482a61aca9ae897934008c7022867a290fffb_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:81949b18210e889ac7d7418d2ce9af7648e65f54daccf94ed372c2d6542921fa_s390x",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:c591f62bbb9f0cc726db8fb475217b00f165ac7685d8b25343261d01fe452d17_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:c95c4d82c802b99ca245c27dadf85a5e3a77c135d0987066deb601bbfe766329_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:1d6270489c06783cc427e661b903fffe4a514d115cff35f1b8d69b708c273768_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:5a3b66bd077ee0402fcf70530f3843b51894101e5c88b13467dd9503b834527f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:7c4af9872c4f6ced3f3751af4cb7f31742d9c760ff04151330132704c4ce61fe_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:e29fb87e700f78c9fa05085be6f5e191d840246de0969fb2e52c845a268bf1d1_s390x",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:4d31dc8eb58f9355bb98beb4a4544f7d3de3af072e8b7a232ad61f622c44beb2_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:95b249bc9d4cf115f70844235b2e58370d4dd2ace971201bc6518b3d9a40759a_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:b7acb0b482ada86354467bbf0544a61ac385f59c865147cf986f9cb09db663b0_s390x",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:cf2bf948529486ad1e61abdc38ed6f9f05733ed6bda441fc10bb88e366429669_amd64",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:48b4fe535691ed432867c9bc1ac4ec734f1e6b5ef51d11a702b99f2d1623840f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:593394515d7cbc4111d1a67703c9c083a8cb6e0d6d6f8e5b914f810e003982ca_s390x",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:6002d16f9f652b6c32ff9b53935ba28f94df3de3a0c127316b023a4d22b54cba_arm64",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:99d5577d86f78239db33862c6b7c8a7fbdd96094498a54c8e0a1c0c25f877382_amd64",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:3317d3fc0bde3446879c47e65412a893d7b8106f7f8efba6dde4a1e04ea090de_s390x",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:34de14f3735c84727e3bb6d1a6bb539ca1feb4932a06a6f897e81290e515c76a_amd64",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:5e8b7ca30990ee8e13700de3f82572858c563d84609158bc4d167c12d80aee26_ppc64le",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:d6fa8c2547ef2c510233a4fdd598db569e959b64f0f1a373530b33e2c0533ba7_arm64",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:1326a7cd7e94f5c4da82643f47767e371127a5644ec0a6f54a82444952f10cc0_arm64",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:1b0a964d266938f06fd6983bdd710222b0ce66bb6036ff992186940b31320ff0_ppc64le",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:82f069b742b7151b4e0f5119f100682200fc8b2561e9444132257df28601550c_s390x",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:c336fb7977ed76f54f47a888b8fd214c856c29f70b51559b3deed4cdcb7e2576_amd64",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:25ac084cc90c7fd7fdd77b7c3267a16cafa88998f115d839bea4f759cb60545f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:781d52334d01ac30aeebd31d59a66677e947639cebb3322de8e53a44ab9e491e_s390x",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:8ab7813c4f5f4fcf14b45aaf657f0fa2e07d38e9fb41c2aea6d7bfe6dca23845_arm64",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:9c0f6d27cde0ea7bdc73b3cd2e274a69254e515efe1dd677b75b12fd85bf6b6b_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:2d09212bd92e600e267171f16ac657ef523072a7a8f08e3b723f8a885160b6a9_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:3682ad9746f7df5b9c5b0f65618279fec68691446cb440d003c121afd5949e46_ppc64le",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:d18eba5df394859cff7ee2e8c9d0a7405b74a0a6fb4a81272b9c5fd9e4afc804_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:ef7c061171c2ec79aaca4a9085bbdcd69606fea64bcf74aab6698e7dba0595bd_arm64",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:0e674b46f728792fda06861c6fe9282e380a6e59e940b59259e0c49236c17ac7_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:67e705f850e13ba10caebd2270efc84bd9be1d5f34f1b2af68d74bb9a9b7713d_arm64",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:757febef9d392c49c61de2712e6dd9fa59bb21d2a64abec3a26df27c737ce8d4_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:7e0af82c1644ee06039c4d56f00db279d4c83f2db9ba624c71353db3032a114c_ppc64le",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:a70a65d977a56a9c64d0b004bf6dc059d3f180e13c3ed7628b217f3ec526c4f5_ppc64le",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:c069e554ec59588384d4829d3dd7b5e50972b5a215433953b8d4cd9eb6f142c5_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:d7c3fec8db9a6bbdf264e21e0e9345204aac8c2ab6cbcebcc7ec219a26139a89_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:ea6c97002b5fdf5e22a47f08a25811620004a63f02e597873601ba0246c6c5cc_arm64",
"8Base-RHOL-5.5:openshift-logging/loki-operator-bundle@sha256:39d18c04f9d6091980640bea1869bdcb28574431c8374c731adaf0aa75f4dbaf_amd64",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:366d7d20ac5f7b577bd9f4f647b726b0731bc830f71d06dd98480f0300c45e83_amd64",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:4e3af348f830133362ce9a859c1d7025b12e57f0394c352859933fcdf7f6a226_s390x",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:727c2a538f036959c1547bd0184e3ee63a14614d27e0c22f20a8b4f5444ac497_ppc64le",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:b4caab0d0a36e67f6e0c07be2cd4c0faf87691221943b7ee3042fd75f50f9096_arm64",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:03ce507ff04a810aa6297c4083641418d66b787f2403cc4580e55dfa2ae981bd_ppc64le",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:2de44e22a1e2f21c1851b0fc0bd264d508ec55637d15b5609a57c922596e597c_amd64",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:68ab07c5075fccf77f8e52602b751156d6a3dab7804ee3be578b12e3a9d767e8_arm64",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:cb75c249014ca7e344dc184355e0c05ed2a82ec1b3ba097e83ae6481f8be8682_s390x",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:184b8163e6964c788e316d1f26c91e9452a3362d04b0192dbcccacde2d6ff0ec_s390x",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:86e326e282577dee8e5e92921757b6438e2adaf70e1d28af6a4b2930db8aa103_arm64",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:b26fc09f9d6994aa83728279995f6e302a87e4d8822507ed7cba77679b339a45_ppc64le",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:b2b277023aede3d238ada29ef8e2733680aa4eb6e1e1a6e18ade52978bda1dc4_amd64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:46efef6feb75414f57b9864cb76c00377a71599054a2b0467e837626ff5b33ad_arm64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:8f2eb1e00cf1491b71180612bae76753d36936fbd4b413c48d98a9273e0b30a7_s390x",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:a9a46f31fecc1d6aa0850118f592c8e23ad34e0c3fce89866db7a8535828a256_amd64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:cd0f0a4a31ea584ae35afa99573b070a4b4eedfa38395b4507342134d0f3ad82_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-38561"
},
{
"category": "external",
"summary": "RHBZ#2100495",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2100495"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-38561",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-38561"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-38561",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-38561"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2021-0113",
"url": "https://pkg.go.dev/vuln/GO-2021-0113"
}
],
"release_date": "2021-08-12T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-08-18T16:04:18+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:7bdf236ddcf99e13e7b03eac3665f456ea520ea34658158b37b53f5515ea2941_ppc64le",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:c989e8278a7aa5a42769666251a53bf12cf1004dfe084a08884b72dd80754503_amd64",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:d81f213923e8a162eb1a842ed04bedb23e8d069c18857ab63f9770ff222d635d_s390x",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:dfd44bf0b81480fc5af46af655474123d1c5335d9e8b363ce9cd2936bd320bea_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:6051"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOL-5.5:openshift-logging/cluster-logging-operator-bundle@sha256:b45d27fdcd7f8c574b818fe96b35d54b4039d9638b603e59df18125dfe9e1b9d_amd64",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:7bdf236ddcf99e13e7b03eac3665f456ea520ea34658158b37b53f5515ea2941_ppc64le",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:c989e8278a7aa5a42769666251a53bf12cf1004dfe084a08884b72dd80754503_amd64",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:d81f213923e8a162eb1a842ed04bedb23e8d069c18857ab63f9770ff222d635d_s390x",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:dfd44bf0b81480fc5af46af655474123d1c5335d9e8b363ce9cd2936bd320bea_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-operator-bundle@sha256:bb9d01a501c0f268fd7ec7d99b5af455bd772dd251d24220e39988dc0e58ba69_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:0653f32f429a2a51e3c24175510482a61aca9ae897934008c7022867a290fffb_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:81949b18210e889ac7d7418d2ce9af7648e65f54daccf94ed372c2d6542921fa_s390x",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:c591f62bbb9f0cc726db8fb475217b00f165ac7685d8b25343261d01fe452d17_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:c95c4d82c802b99ca245c27dadf85a5e3a77c135d0987066deb601bbfe766329_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:1d6270489c06783cc427e661b903fffe4a514d115cff35f1b8d69b708c273768_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:5a3b66bd077ee0402fcf70530f3843b51894101e5c88b13467dd9503b834527f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:7c4af9872c4f6ced3f3751af4cb7f31742d9c760ff04151330132704c4ce61fe_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:e29fb87e700f78c9fa05085be6f5e191d840246de0969fb2e52c845a268bf1d1_s390x",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:4d31dc8eb58f9355bb98beb4a4544f7d3de3af072e8b7a232ad61f622c44beb2_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:95b249bc9d4cf115f70844235b2e58370d4dd2ace971201bc6518b3d9a40759a_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:b7acb0b482ada86354467bbf0544a61ac385f59c865147cf986f9cb09db663b0_s390x",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:cf2bf948529486ad1e61abdc38ed6f9f05733ed6bda441fc10bb88e366429669_amd64",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:48b4fe535691ed432867c9bc1ac4ec734f1e6b5ef51d11a702b99f2d1623840f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:593394515d7cbc4111d1a67703c9c083a8cb6e0d6d6f8e5b914f810e003982ca_s390x",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:6002d16f9f652b6c32ff9b53935ba28f94df3de3a0c127316b023a4d22b54cba_arm64",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:99d5577d86f78239db33862c6b7c8a7fbdd96094498a54c8e0a1c0c25f877382_amd64",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:3317d3fc0bde3446879c47e65412a893d7b8106f7f8efba6dde4a1e04ea090de_s390x",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:34de14f3735c84727e3bb6d1a6bb539ca1feb4932a06a6f897e81290e515c76a_amd64",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:5e8b7ca30990ee8e13700de3f82572858c563d84609158bc4d167c12d80aee26_ppc64le",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:d6fa8c2547ef2c510233a4fdd598db569e959b64f0f1a373530b33e2c0533ba7_arm64",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:1326a7cd7e94f5c4da82643f47767e371127a5644ec0a6f54a82444952f10cc0_arm64",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:1b0a964d266938f06fd6983bdd710222b0ce66bb6036ff992186940b31320ff0_ppc64le",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:82f069b742b7151b4e0f5119f100682200fc8b2561e9444132257df28601550c_s390x",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:c336fb7977ed76f54f47a888b8fd214c856c29f70b51559b3deed4cdcb7e2576_amd64",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:25ac084cc90c7fd7fdd77b7c3267a16cafa88998f115d839bea4f759cb60545f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:781d52334d01ac30aeebd31d59a66677e947639cebb3322de8e53a44ab9e491e_s390x",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:8ab7813c4f5f4fcf14b45aaf657f0fa2e07d38e9fb41c2aea6d7bfe6dca23845_arm64",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:9c0f6d27cde0ea7bdc73b3cd2e274a69254e515efe1dd677b75b12fd85bf6b6b_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:2d09212bd92e600e267171f16ac657ef523072a7a8f08e3b723f8a885160b6a9_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:3682ad9746f7df5b9c5b0f65618279fec68691446cb440d003c121afd5949e46_ppc64le",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:d18eba5df394859cff7ee2e8c9d0a7405b74a0a6fb4a81272b9c5fd9e4afc804_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:ef7c061171c2ec79aaca4a9085bbdcd69606fea64bcf74aab6698e7dba0595bd_arm64",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:0e674b46f728792fda06861c6fe9282e380a6e59e940b59259e0c49236c17ac7_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:67e705f850e13ba10caebd2270efc84bd9be1d5f34f1b2af68d74bb9a9b7713d_arm64",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:757febef9d392c49c61de2712e6dd9fa59bb21d2a64abec3a26df27c737ce8d4_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:7e0af82c1644ee06039c4d56f00db279d4c83f2db9ba624c71353db3032a114c_ppc64le",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:a70a65d977a56a9c64d0b004bf6dc059d3f180e13c3ed7628b217f3ec526c4f5_ppc64le",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:c069e554ec59588384d4829d3dd7b5e50972b5a215433953b8d4cd9eb6f142c5_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:d7c3fec8db9a6bbdf264e21e0e9345204aac8c2ab6cbcebcc7ec219a26139a89_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:ea6c97002b5fdf5e22a47f08a25811620004a63f02e597873601ba0246c6c5cc_arm64",
"8Base-RHOL-5.5:openshift-logging/loki-operator-bundle@sha256:39d18c04f9d6091980640bea1869bdcb28574431c8374c731adaf0aa75f4dbaf_amd64",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:366d7d20ac5f7b577bd9f4f647b726b0731bc830f71d06dd98480f0300c45e83_amd64",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:4e3af348f830133362ce9a859c1d7025b12e57f0394c352859933fcdf7f6a226_s390x",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:727c2a538f036959c1547bd0184e3ee63a14614d27e0c22f20a8b4f5444ac497_ppc64le",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:b4caab0d0a36e67f6e0c07be2cd4c0faf87691221943b7ee3042fd75f50f9096_arm64",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:03ce507ff04a810aa6297c4083641418d66b787f2403cc4580e55dfa2ae981bd_ppc64le",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:2de44e22a1e2f21c1851b0fc0bd264d508ec55637d15b5609a57c922596e597c_amd64",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:68ab07c5075fccf77f8e52602b751156d6a3dab7804ee3be578b12e3a9d767e8_arm64",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:cb75c249014ca7e344dc184355e0c05ed2a82ec1b3ba097e83ae6481f8be8682_s390x",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:184b8163e6964c788e316d1f26c91e9452a3362d04b0192dbcccacde2d6ff0ec_s390x",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:86e326e282577dee8e5e92921757b6438e2adaf70e1d28af6a4b2930db8aa103_arm64",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:b26fc09f9d6994aa83728279995f6e302a87e4d8822507ed7cba77679b339a45_ppc64le",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:b2b277023aede3d238ada29ef8e2733680aa4eb6e1e1a6e18ade52978bda1dc4_amd64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:46efef6feb75414f57b9864cb76c00377a71599054a2b0467e837626ff5b33ad_arm64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:8f2eb1e00cf1491b71180612bae76753d36936fbd4b413c48d98a9273e0b30a7_s390x",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:a9a46f31fecc1d6aa0850118f592c8e23ad34e0c3fce89866db7a8535828a256_amd64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:cd0f0a4a31ea584ae35afa99573b070a4b4eedfa38395b4507342134d0f3ad82_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: out-of-bounds read in golang.org/x/text/language leads to DoS"
},
{
"acknowledgments": [
{
"names": [
"Beni Paskin Cherniavsky"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2022-0759",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2022-02-15T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHOL-5.5:openshift-logging/cluster-logging-operator-bundle@sha256:b45d27fdcd7f8c574b818fe96b35d54b4039d9638b603e59df18125dfe9e1b9d_amd64",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:7bdf236ddcf99e13e7b03eac3665f456ea520ea34658158b37b53f5515ea2941_ppc64le",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:c989e8278a7aa5a42769666251a53bf12cf1004dfe084a08884b72dd80754503_amd64",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:d81f213923e8a162eb1a842ed04bedb23e8d069c18857ab63f9770ff222d635d_s390x",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:dfd44bf0b81480fc5af46af655474123d1c5335d9e8b363ce9cd2936bd320bea_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-operator-bundle@sha256:bb9d01a501c0f268fd7ec7d99b5af455bd772dd251d24220e39988dc0e58ba69_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:0653f32f429a2a51e3c24175510482a61aca9ae897934008c7022867a290fffb_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:81949b18210e889ac7d7418d2ce9af7648e65f54daccf94ed372c2d6542921fa_s390x",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:c591f62bbb9f0cc726db8fb475217b00f165ac7685d8b25343261d01fe452d17_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:c95c4d82c802b99ca245c27dadf85a5e3a77c135d0987066deb601bbfe766329_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:1d6270489c06783cc427e661b903fffe4a514d115cff35f1b8d69b708c273768_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:5a3b66bd077ee0402fcf70530f3843b51894101e5c88b13467dd9503b834527f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:7c4af9872c4f6ced3f3751af4cb7f31742d9c760ff04151330132704c4ce61fe_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:e29fb87e700f78c9fa05085be6f5e191d840246de0969fb2e52c845a268bf1d1_s390x",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:4d31dc8eb58f9355bb98beb4a4544f7d3de3af072e8b7a232ad61f622c44beb2_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:95b249bc9d4cf115f70844235b2e58370d4dd2ace971201bc6518b3d9a40759a_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:b7acb0b482ada86354467bbf0544a61ac385f59c865147cf986f9cb09db663b0_s390x",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:cf2bf948529486ad1e61abdc38ed6f9f05733ed6bda441fc10bb88e366429669_amd64",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:48b4fe535691ed432867c9bc1ac4ec734f1e6b5ef51d11a702b99f2d1623840f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:593394515d7cbc4111d1a67703c9c083a8cb6e0d6d6f8e5b914f810e003982ca_s390x",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:6002d16f9f652b6c32ff9b53935ba28f94df3de3a0c127316b023a4d22b54cba_arm64",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:99d5577d86f78239db33862c6b7c8a7fbdd96094498a54c8e0a1c0c25f877382_amd64",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:1326a7cd7e94f5c4da82643f47767e371127a5644ec0a6f54a82444952f10cc0_arm64",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:1b0a964d266938f06fd6983bdd710222b0ce66bb6036ff992186940b31320ff0_ppc64le",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:82f069b742b7151b4e0f5119f100682200fc8b2561e9444132257df28601550c_s390x",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:c336fb7977ed76f54f47a888b8fd214c856c29f70b51559b3deed4cdcb7e2576_amd64",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:25ac084cc90c7fd7fdd77b7c3267a16cafa88998f115d839bea4f759cb60545f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:781d52334d01ac30aeebd31d59a66677e947639cebb3322de8e53a44ab9e491e_s390x",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:8ab7813c4f5f4fcf14b45aaf657f0fa2e07d38e9fb41c2aea6d7bfe6dca23845_arm64",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:9c0f6d27cde0ea7bdc73b3cd2e274a69254e515efe1dd677b75b12fd85bf6b6b_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:2d09212bd92e600e267171f16ac657ef523072a7a8f08e3b723f8a885160b6a9_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:3682ad9746f7df5b9c5b0f65618279fec68691446cb440d003c121afd5949e46_ppc64le",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:d18eba5df394859cff7ee2e8c9d0a7405b74a0a6fb4a81272b9c5fd9e4afc804_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:ef7c061171c2ec79aaca4a9085bbdcd69606fea64bcf74aab6698e7dba0595bd_arm64",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:0e674b46f728792fda06861c6fe9282e380a6e59e940b59259e0c49236c17ac7_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:67e705f850e13ba10caebd2270efc84bd9be1d5f34f1b2af68d74bb9a9b7713d_arm64",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:757febef9d392c49c61de2712e6dd9fa59bb21d2a64abec3a26df27c737ce8d4_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:7e0af82c1644ee06039c4d56f00db279d4c83f2db9ba624c71353db3032a114c_ppc64le",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:a70a65d977a56a9c64d0b004bf6dc059d3f180e13c3ed7628b217f3ec526c4f5_ppc64le",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:c069e554ec59588384d4829d3dd7b5e50972b5a215433953b8d4cd9eb6f142c5_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:d7c3fec8db9a6bbdf264e21e0e9345204aac8c2ab6cbcebcc7ec219a26139a89_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:ea6c97002b5fdf5e22a47f08a25811620004a63f02e597873601ba0246c6c5cc_arm64",
"8Base-RHOL-5.5:openshift-logging/loki-operator-bundle@sha256:39d18c04f9d6091980640bea1869bdcb28574431c8374c731adaf0aa75f4dbaf_amd64",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:366d7d20ac5f7b577bd9f4f647b726b0731bc830f71d06dd98480f0300c45e83_amd64",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:4e3af348f830133362ce9a859c1d7025b12e57f0394c352859933fcdf7f6a226_s390x",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:727c2a538f036959c1547bd0184e3ee63a14614d27e0c22f20a8b4f5444ac497_ppc64le",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:b4caab0d0a36e67f6e0c07be2cd4c0faf87691221943b7ee3042fd75f50f9096_arm64",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:03ce507ff04a810aa6297c4083641418d66b787f2403cc4580e55dfa2ae981bd_ppc64le",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:2de44e22a1e2f21c1851b0fc0bd264d508ec55637d15b5609a57c922596e597c_amd64",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:68ab07c5075fccf77f8e52602b751156d6a3dab7804ee3be578b12e3a9d767e8_arm64",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:cb75c249014ca7e344dc184355e0c05ed2a82ec1b3ba097e83ae6481f8be8682_s390x",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:184b8163e6964c788e316d1f26c91e9452a3362d04b0192dbcccacde2d6ff0ec_s390x",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:86e326e282577dee8e5e92921757b6438e2adaf70e1d28af6a4b2930db8aa103_arm64",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:b26fc09f9d6994aa83728279995f6e302a87e4d8822507ed7cba77679b339a45_ppc64le",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:b2b277023aede3d238ada29ef8e2733680aa4eb6e1e1a6e18ade52978bda1dc4_amd64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:46efef6feb75414f57b9864cb76c00377a71599054a2b0467e837626ff5b33ad_arm64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:8f2eb1e00cf1491b71180612bae76753d36936fbd4b413c48d98a9273e0b30a7_s390x",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:a9a46f31fecc1d6aa0850118f592c8e23ad34e0c3fce89866db7a8535828a256_amd64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:cd0f0a4a31ea584ae35afa99573b070a4b4eedfa38395b4507342134d0f3ad82_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2058404"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in kubeclient, the Ruby client for Kubernetes REST API, in the way it parsed kubeconfig files. When the kubeconfig file does not configure custom CA to verify certs, kubeclient ends up accepting any certificate (it wrongly returns VERIFY_NONE). Ruby applications that leverage kubeclient to parse kubeconfig files are susceptible to Man-in-the-middle attacks (MITM).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kubeclient: kubeconfig parsing error can lead to MITM attacks",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:3317d3fc0bde3446879c47e65412a893d7b8106f7f8efba6dde4a1e04ea090de_s390x",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:34de14f3735c84727e3bb6d1a6bb539ca1feb4932a06a6f897e81290e515c76a_amd64",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:5e8b7ca30990ee8e13700de3f82572858c563d84609158bc4d167c12d80aee26_ppc64le",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:d6fa8c2547ef2c510233a4fdd598db569e959b64f0f1a373530b33e2c0533ba7_arm64"
],
"known_not_affected": [
"8Base-RHOL-5.5:openshift-logging/cluster-logging-operator-bundle@sha256:b45d27fdcd7f8c574b818fe96b35d54b4039d9638b603e59df18125dfe9e1b9d_amd64",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:7bdf236ddcf99e13e7b03eac3665f456ea520ea34658158b37b53f5515ea2941_ppc64le",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:c989e8278a7aa5a42769666251a53bf12cf1004dfe084a08884b72dd80754503_amd64",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:d81f213923e8a162eb1a842ed04bedb23e8d069c18857ab63f9770ff222d635d_s390x",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:dfd44bf0b81480fc5af46af655474123d1c5335d9e8b363ce9cd2936bd320bea_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-operator-bundle@sha256:bb9d01a501c0f268fd7ec7d99b5af455bd772dd251d24220e39988dc0e58ba69_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:0653f32f429a2a51e3c24175510482a61aca9ae897934008c7022867a290fffb_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:81949b18210e889ac7d7418d2ce9af7648e65f54daccf94ed372c2d6542921fa_s390x",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:c591f62bbb9f0cc726db8fb475217b00f165ac7685d8b25343261d01fe452d17_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:c95c4d82c802b99ca245c27dadf85a5e3a77c135d0987066deb601bbfe766329_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:1d6270489c06783cc427e661b903fffe4a514d115cff35f1b8d69b708c273768_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:5a3b66bd077ee0402fcf70530f3843b51894101e5c88b13467dd9503b834527f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:7c4af9872c4f6ced3f3751af4cb7f31742d9c760ff04151330132704c4ce61fe_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:e29fb87e700f78c9fa05085be6f5e191d840246de0969fb2e52c845a268bf1d1_s390x",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:4d31dc8eb58f9355bb98beb4a4544f7d3de3af072e8b7a232ad61f622c44beb2_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:95b249bc9d4cf115f70844235b2e58370d4dd2ace971201bc6518b3d9a40759a_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:b7acb0b482ada86354467bbf0544a61ac385f59c865147cf986f9cb09db663b0_s390x",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:cf2bf948529486ad1e61abdc38ed6f9f05733ed6bda441fc10bb88e366429669_amd64",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:48b4fe535691ed432867c9bc1ac4ec734f1e6b5ef51d11a702b99f2d1623840f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:593394515d7cbc4111d1a67703c9c083a8cb6e0d6d6f8e5b914f810e003982ca_s390x",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:6002d16f9f652b6c32ff9b53935ba28f94df3de3a0c127316b023a4d22b54cba_arm64",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:99d5577d86f78239db33862c6b7c8a7fbdd96094498a54c8e0a1c0c25f877382_amd64",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:1326a7cd7e94f5c4da82643f47767e371127a5644ec0a6f54a82444952f10cc0_arm64",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:1b0a964d266938f06fd6983bdd710222b0ce66bb6036ff992186940b31320ff0_ppc64le",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:82f069b742b7151b4e0f5119f100682200fc8b2561e9444132257df28601550c_s390x",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:c336fb7977ed76f54f47a888b8fd214c856c29f70b51559b3deed4cdcb7e2576_amd64",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:25ac084cc90c7fd7fdd77b7c3267a16cafa88998f115d839bea4f759cb60545f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:781d52334d01ac30aeebd31d59a66677e947639cebb3322de8e53a44ab9e491e_s390x",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:8ab7813c4f5f4fcf14b45aaf657f0fa2e07d38e9fb41c2aea6d7bfe6dca23845_arm64",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:9c0f6d27cde0ea7bdc73b3cd2e274a69254e515efe1dd677b75b12fd85bf6b6b_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:2d09212bd92e600e267171f16ac657ef523072a7a8f08e3b723f8a885160b6a9_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:3682ad9746f7df5b9c5b0f65618279fec68691446cb440d003c121afd5949e46_ppc64le",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:d18eba5df394859cff7ee2e8c9d0a7405b74a0a6fb4a81272b9c5fd9e4afc804_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:ef7c061171c2ec79aaca4a9085bbdcd69606fea64bcf74aab6698e7dba0595bd_arm64",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:0e674b46f728792fda06861c6fe9282e380a6e59e940b59259e0c49236c17ac7_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:67e705f850e13ba10caebd2270efc84bd9be1d5f34f1b2af68d74bb9a9b7713d_arm64",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:757febef9d392c49c61de2712e6dd9fa59bb21d2a64abec3a26df27c737ce8d4_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:7e0af82c1644ee06039c4d56f00db279d4c83f2db9ba624c71353db3032a114c_ppc64le",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:a70a65d977a56a9c64d0b004bf6dc059d3f180e13c3ed7628b217f3ec526c4f5_ppc64le",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:c069e554ec59588384d4829d3dd7b5e50972b5a215433953b8d4cd9eb6f142c5_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:d7c3fec8db9a6bbdf264e21e0e9345204aac8c2ab6cbcebcc7ec219a26139a89_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:ea6c97002b5fdf5e22a47f08a25811620004a63f02e597873601ba0246c6c5cc_arm64",
"8Base-RHOL-5.5:openshift-logging/loki-operator-bundle@sha256:39d18c04f9d6091980640bea1869bdcb28574431c8374c731adaf0aa75f4dbaf_amd64",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:366d7d20ac5f7b577bd9f4f647b726b0731bc830f71d06dd98480f0300c45e83_amd64",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:4e3af348f830133362ce9a859c1d7025b12e57f0394c352859933fcdf7f6a226_s390x",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:727c2a538f036959c1547bd0184e3ee63a14614d27e0c22f20a8b4f5444ac497_ppc64le",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:b4caab0d0a36e67f6e0c07be2cd4c0faf87691221943b7ee3042fd75f50f9096_arm64",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:03ce507ff04a810aa6297c4083641418d66b787f2403cc4580e55dfa2ae981bd_ppc64le",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:2de44e22a1e2f21c1851b0fc0bd264d508ec55637d15b5609a57c922596e597c_amd64",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:68ab07c5075fccf77f8e52602b751156d6a3dab7804ee3be578b12e3a9d767e8_arm64",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:cb75c249014ca7e344dc184355e0c05ed2a82ec1b3ba097e83ae6481f8be8682_s390x",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:184b8163e6964c788e316d1f26c91e9452a3362d04b0192dbcccacde2d6ff0ec_s390x",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:86e326e282577dee8e5e92921757b6438e2adaf70e1d28af6a4b2930db8aa103_arm64",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:b26fc09f9d6994aa83728279995f6e302a87e4d8822507ed7cba77679b339a45_ppc64le",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:b2b277023aede3d238ada29ef8e2733680aa4eb6e1e1a6e18ade52978bda1dc4_amd64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:46efef6feb75414f57b9864cb76c00377a71599054a2b0467e837626ff5b33ad_arm64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:8f2eb1e00cf1491b71180612bae76753d36936fbd4b413c48d98a9273e0b30a7_s390x",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:a9a46f31fecc1d6aa0850118f592c8e23ad34e0c3fce89866db7a8535828a256_amd64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:cd0f0a4a31ea584ae35afa99573b070a4b4eedfa38395b4507342134d0f3ad82_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-0759"
},
{
"category": "external",
"summary": "RHBZ#2058404",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2058404"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-0759",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0759"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-0759",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0759"
}
],
"release_date": "2022-03-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-08-18T16:04:18+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:3317d3fc0bde3446879c47e65412a893d7b8106f7f8efba6dde4a1e04ea090de_s390x",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:34de14f3735c84727e3bb6d1a6bb539ca1feb4932a06a6f897e81290e515c76a_amd64",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:5e8b7ca30990ee8e13700de3f82572858c563d84609158bc4d167c12d80aee26_ppc64le",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:d6fa8c2547ef2c510233a4fdd598db569e959b64f0f1a373530b33e2c0533ba7_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:6051"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOL-5.5:openshift-logging/cluster-logging-operator-bundle@sha256:b45d27fdcd7f8c574b818fe96b35d54b4039d9638b603e59df18125dfe9e1b9d_amd64",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:7bdf236ddcf99e13e7b03eac3665f456ea520ea34658158b37b53f5515ea2941_ppc64le",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:c989e8278a7aa5a42769666251a53bf12cf1004dfe084a08884b72dd80754503_amd64",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:d81f213923e8a162eb1a842ed04bedb23e8d069c18857ab63f9770ff222d635d_s390x",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:dfd44bf0b81480fc5af46af655474123d1c5335d9e8b363ce9cd2936bd320bea_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-operator-bundle@sha256:bb9d01a501c0f268fd7ec7d99b5af455bd772dd251d24220e39988dc0e58ba69_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:0653f32f429a2a51e3c24175510482a61aca9ae897934008c7022867a290fffb_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:81949b18210e889ac7d7418d2ce9af7648e65f54daccf94ed372c2d6542921fa_s390x",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:c591f62bbb9f0cc726db8fb475217b00f165ac7685d8b25343261d01fe452d17_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:c95c4d82c802b99ca245c27dadf85a5e3a77c135d0987066deb601bbfe766329_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:1d6270489c06783cc427e661b903fffe4a514d115cff35f1b8d69b708c273768_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:5a3b66bd077ee0402fcf70530f3843b51894101e5c88b13467dd9503b834527f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:7c4af9872c4f6ced3f3751af4cb7f31742d9c760ff04151330132704c4ce61fe_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:e29fb87e700f78c9fa05085be6f5e191d840246de0969fb2e52c845a268bf1d1_s390x",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:4d31dc8eb58f9355bb98beb4a4544f7d3de3af072e8b7a232ad61f622c44beb2_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:95b249bc9d4cf115f70844235b2e58370d4dd2ace971201bc6518b3d9a40759a_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:b7acb0b482ada86354467bbf0544a61ac385f59c865147cf986f9cb09db663b0_s390x",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:cf2bf948529486ad1e61abdc38ed6f9f05733ed6bda441fc10bb88e366429669_amd64",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:48b4fe535691ed432867c9bc1ac4ec734f1e6b5ef51d11a702b99f2d1623840f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:593394515d7cbc4111d1a67703c9c083a8cb6e0d6d6f8e5b914f810e003982ca_s390x",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:6002d16f9f652b6c32ff9b53935ba28f94df3de3a0c127316b023a4d22b54cba_arm64",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:99d5577d86f78239db33862c6b7c8a7fbdd96094498a54c8e0a1c0c25f877382_amd64",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:3317d3fc0bde3446879c47e65412a893d7b8106f7f8efba6dde4a1e04ea090de_s390x",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:34de14f3735c84727e3bb6d1a6bb539ca1feb4932a06a6f897e81290e515c76a_amd64",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:5e8b7ca30990ee8e13700de3f82572858c563d84609158bc4d167c12d80aee26_ppc64le",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:d6fa8c2547ef2c510233a4fdd598db569e959b64f0f1a373530b33e2c0533ba7_arm64",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:1326a7cd7e94f5c4da82643f47767e371127a5644ec0a6f54a82444952f10cc0_arm64",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:1b0a964d266938f06fd6983bdd710222b0ce66bb6036ff992186940b31320ff0_ppc64le",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:82f069b742b7151b4e0f5119f100682200fc8b2561e9444132257df28601550c_s390x",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:c336fb7977ed76f54f47a888b8fd214c856c29f70b51559b3deed4cdcb7e2576_amd64",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:25ac084cc90c7fd7fdd77b7c3267a16cafa88998f115d839bea4f759cb60545f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:781d52334d01ac30aeebd31d59a66677e947639cebb3322de8e53a44ab9e491e_s390x",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:8ab7813c4f5f4fcf14b45aaf657f0fa2e07d38e9fb41c2aea6d7bfe6dca23845_arm64",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:9c0f6d27cde0ea7bdc73b3cd2e274a69254e515efe1dd677b75b12fd85bf6b6b_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:2d09212bd92e600e267171f16ac657ef523072a7a8f08e3b723f8a885160b6a9_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:3682ad9746f7df5b9c5b0f65618279fec68691446cb440d003c121afd5949e46_ppc64le",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:d18eba5df394859cff7ee2e8c9d0a7405b74a0a6fb4a81272b9c5fd9e4afc804_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:ef7c061171c2ec79aaca4a9085bbdcd69606fea64bcf74aab6698e7dba0595bd_arm64",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:0e674b46f728792fda06861c6fe9282e380a6e59e940b59259e0c49236c17ac7_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:67e705f850e13ba10caebd2270efc84bd9be1d5f34f1b2af68d74bb9a9b7713d_arm64",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:757febef9d392c49c61de2712e6dd9fa59bb21d2a64abec3a26df27c737ce8d4_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:7e0af82c1644ee06039c4d56f00db279d4c83f2db9ba624c71353db3032a114c_ppc64le",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:a70a65d977a56a9c64d0b004bf6dc059d3f180e13c3ed7628b217f3ec526c4f5_ppc64le",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:c069e554ec59588384d4829d3dd7b5e50972b5a215433953b8d4cd9eb6f142c5_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:d7c3fec8db9a6bbdf264e21e0e9345204aac8c2ab6cbcebcc7ec219a26139a89_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:ea6c97002b5fdf5e22a47f08a25811620004a63f02e597873601ba0246c6c5cc_arm64",
"8Base-RHOL-5.5:openshift-logging/loki-operator-bundle@sha256:39d18c04f9d6091980640bea1869bdcb28574431c8374c731adaf0aa75f4dbaf_amd64",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:366d7d20ac5f7b577bd9f4f647b726b0731bc830f71d06dd98480f0300c45e83_amd64",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:4e3af348f830133362ce9a859c1d7025b12e57f0394c352859933fcdf7f6a226_s390x",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:727c2a538f036959c1547bd0184e3ee63a14614d27e0c22f20a8b4f5444ac497_ppc64le",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:b4caab0d0a36e67f6e0c07be2cd4c0faf87691221943b7ee3042fd75f50f9096_arm64",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:03ce507ff04a810aa6297c4083641418d66b787f2403cc4580e55dfa2ae981bd_ppc64le",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:2de44e22a1e2f21c1851b0fc0bd264d508ec55637d15b5609a57c922596e597c_amd64",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:68ab07c5075fccf77f8e52602b751156d6a3dab7804ee3be578b12e3a9d767e8_arm64",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:cb75c249014ca7e344dc184355e0c05ed2a82ec1b3ba097e83ae6481f8be8682_s390x",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:184b8163e6964c788e316d1f26c91e9452a3362d04b0192dbcccacde2d6ff0ec_s390x",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:86e326e282577dee8e5e92921757b6438e2adaf70e1d28af6a4b2930db8aa103_arm64",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:b26fc09f9d6994aa83728279995f6e302a87e4d8822507ed7cba77679b339a45_ppc64le",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:b2b277023aede3d238ada29ef8e2733680aa4eb6e1e1a6e18ade52978bda1dc4_amd64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:46efef6feb75414f57b9864cb76c00377a71599054a2b0467e837626ff5b33ad_arm64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:8f2eb1e00cf1491b71180612bae76753d36936fbd4b413c48d98a9273e0b30a7_s390x",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:a9a46f31fecc1d6aa0850118f592c8e23ad34e0c3fce89866db7a8535828a256_amd64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:cd0f0a4a31ea584ae35afa99573b070a4b4eedfa38395b4507342134d0f3ad82_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kubeclient: kubeconfig parsing error can lead to MITM attacks"
},
{
"cve": "CVE-2022-21698",
"cwe": {
"id": "CWE-772",
"name": "Missing Release of Resource after Effective Lifetime"
},
"discovery_date": "2022-01-19T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHOL-5.5:openshift-logging/cluster-logging-operator-bundle@sha256:b45d27fdcd7f8c574b818fe96b35d54b4039d9638b603e59df18125dfe9e1b9d_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-operator-bundle@sha256:bb9d01a501c0f268fd7ec7d99b5af455bd772dd251d24220e39988dc0e58ba69_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:0653f32f429a2a51e3c24175510482a61aca9ae897934008c7022867a290fffb_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:81949b18210e889ac7d7418d2ce9af7648e65f54daccf94ed372c2d6542921fa_s390x",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:c591f62bbb9f0cc726db8fb475217b00f165ac7685d8b25343261d01fe452d17_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:c95c4d82c802b99ca245c27dadf85a5e3a77c135d0987066deb601bbfe766329_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:1d6270489c06783cc427e661b903fffe4a514d115cff35f1b8d69b708c273768_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:5a3b66bd077ee0402fcf70530f3843b51894101e5c88b13467dd9503b834527f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:7c4af9872c4f6ced3f3751af4cb7f31742d9c760ff04151330132704c4ce61fe_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:e29fb87e700f78c9fa05085be6f5e191d840246de0969fb2e52c845a268bf1d1_s390x",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:4d31dc8eb58f9355bb98beb4a4544f7d3de3af072e8b7a232ad61f622c44beb2_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:95b249bc9d4cf115f70844235b2e58370d4dd2ace971201bc6518b3d9a40759a_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:b7acb0b482ada86354467bbf0544a61ac385f59c865147cf986f9cb09db663b0_s390x",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:cf2bf948529486ad1e61abdc38ed6f9f05733ed6bda441fc10bb88e366429669_amd64",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:3317d3fc0bde3446879c47e65412a893d7b8106f7f8efba6dde4a1e04ea090de_s390x",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:34de14f3735c84727e3bb6d1a6bb539ca1feb4932a06a6f897e81290e515c76a_amd64",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:5e8b7ca30990ee8e13700de3f82572858c563d84609158bc4d167c12d80aee26_ppc64le",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:d6fa8c2547ef2c510233a4fdd598db569e959b64f0f1a373530b33e2c0533ba7_arm64",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:1326a7cd7e94f5c4da82643f47767e371127a5644ec0a6f54a82444952f10cc0_arm64",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:1b0a964d266938f06fd6983bdd710222b0ce66bb6036ff992186940b31320ff0_ppc64le",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:82f069b742b7151b4e0f5119f100682200fc8b2561e9444132257df28601550c_s390x",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:c336fb7977ed76f54f47a888b8fd214c856c29f70b51559b3deed4cdcb7e2576_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:2d09212bd92e600e267171f16ac657ef523072a7a8f08e3b723f8a885160b6a9_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:3682ad9746f7df5b9c5b0f65618279fec68691446cb440d003c121afd5949e46_ppc64le",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:d18eba5df394859cff7ee2e8c9d0a7405b74a0a6fb4a81272b9c5fd9e4afc804_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:ef7c061171c2ec79aaca4a9085bbdcd69606fea64bcf74aab6698e7dba0595bd_arm64",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:0e674b46f728792fda06861c6fe9282e380a6e59e940b59259e0c49236c17ac7_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:67e705f850e13ba10caebd2270efc84bd9be1d5f34f1b2af68d74bb9a9b7713d_arm64",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:757febef9d392c49c61de2712e6dd9fa59bb21d2a64abec3a26df27c737ce8d4_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:7e0af82c1644ee06039c4d56f00db279d4c83f2db9ba624c71353db3032a114c_ppc64le",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:a70a65d977a56a9c64d0b004bf6dc059d3f180e13c3ed7628b217f3ec526c4f5_ppc64le",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:c069e554ec59588384d4829d3dd7b5e50972b5a215433953b8d4cd9eb6f142c5_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:d7c3fec8db9a6bbdf264e21e0e9345204aac8c2ab6cbcebcc7ec219a26139a89_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:ea6c97002b5fdf5e22a47f08a25811620004a63f02e597873601ba0246c6c5cc_arm64",
"8Base-RHOL-5.5:openshift-logging/loki-operator-bundle@sha256:39d18c04f9d6091980640bea1869bdcb28574431c8374c731adaf0aa75f4dbaf_amd64",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:366d7d20ac5f7b577bd9f4f647b726b0731bc830f71d06dd98480f0300c45e83_amd64",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:4e3af348f830133362ce9a859c1d7025b12e57f0394c352859933fcdf7f6a226_s390x",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:727c2a538f036959c1547bd0184e3ee63a14614d27e0c22f20a8b4f5444ac497_ppc64le",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:b4caab0d0a36e67f6e0c07be2cd4c0faf87691221943b7ee3042fd75f50f9096_arm64",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:03ce507ff04a810aa6297c4083641418d66b787f2403cc4580e55dfa2ae981bd_ppc64le",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:2de44e22a1e2f21c1851b0fc0bd264d508ec55637d15b5609a57c922596e597c_amd64",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:68ab07c5075fccf77f8e52602b751156d6a3dab7804ee3be578b12e3a9d767e8_arm64",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:cb75c249014ca7e344dc184355e0c05ed2a82ec1b3ba097e83ae6481f8be8682_s390x",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:184b8163e6964c788e316d1f26c91e9452a3362d04b0192dbcccacde2d6ff0ec_s390x",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:86e326e282577dee8e5e92921757b6438e2adaf70e1d28af6a4b2930db8aa103_arm64",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:b26fc09f9d6994aa83728279995f6e302a87e4d8822507ed7cba77679b339a45_ppc64le",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:b2b277023aede3d238ada29ef8e2733680aa4eb6e1e1a6e18ade52978bda1dc4_amd64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:46efef6feb75414f57b9864cb76c00377a71599054a2b0467e837626ff5b33ad_arm64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:8f2eb1e00cf1491b71180612bae76753d36936fbd4b413c48d98a9273e0b30a7_s390x",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:a9a46f31fecc1d6aa0850118f592c8e23ad34e0c3fce89866db7a8535828a256_amd64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:cd0f0a4a31ea584ae35afa99573b070a4b4eedfa38395b4507342134d0f3ad82_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2045880"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service attack was found in prometheus/client_golang. This flaw allows an attacker to produce a denial of service attack on an HTTP server by exploiting the InstrumentHandlerCounter function in the version below 1.11.1, resulting in a loss of availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "prometheus/client_golang: Denial of service using InstrumentHandlerCounter",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw has been rated as having a moderate impact for two main reasons. The opportunity for a Denial of Service is limited to the golang runtime. In the case of OpenShift Container Platform, this would be restricted within each individual container. Additionally, this is in alignment with upstream\u0027s (the Prometheus project) impact rating.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:7bdf236ddcf99e13e7b03eac3665f456ea520ea34658158b37b53f5515ea2941_ppc64le",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:c989e8278a7aa5a42769666251a53bf12cf1004dfe084a08884b72dd80754503_amd64",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:d81f213923e8a162eb1a842ed04bedb23e8d069c18857ab63f9770ff222d635d_s390x",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:dfd44bf0b81480fc5af46af655474123d1c5335d9e8b363ce9cd2936bd320bea_arm64",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:48b4fe535691ed432867c9bc1ac4ec734f1e6b5ef51d11a702b99f2d1623840f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:593394515d7cbc4111d1a67703c9c083a8cb6e0d6d6f8e5b914f810e003982ca_s390x",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:6002d16f9f652b6c32ff9b53935ba28f94df3de3a0c127316b023a4d22b54cba_arm64",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:99d5577d86f78239db33862c6b7c8a7fbdd96094498a54c8e0a1c0c25f877382_amd64",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:25ac084cc90c7fd7fdd77b7c3267a16cafa88998f115d839bea4f759cb60545f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:781d52334d01ac30aeebd31d59a66677e947639cebb3322de8e53a44ab9e491e_s390x",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:8ab7813c4f5f4fcf14b45aaf657f0fa2e07d38e9fb41c2aea6d7bfe6dca23845_arm64",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:9c0f6d27cde0ea7bdc73b3cd2e274a69254e515efe1dd677b75b12fd85bf6b6b_amd64"
],
"known_not_affected": [
"8Base-RHOL-5.5:openshift-logging/cluster-logging-operator-bundle@sha256:b45d27fdcd7f8c574b818fe96b35d54b4039d9638b603e59df18125dfe9e1b9d_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-operator-bundle@sha256:bb9d01a501c0f268fd7ec7d99b5af455bd772dd251d24220e39988dc0e58ba69_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:0653f32f429a2a51e3c24175510482a61aca9ae897934008c7022867a290fffb_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:81949b18210e889ac7d7418d2ce9af7648e65f54daccf94ed372c2d6542921fa_s390x",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:c591f62bbb9f0cc726db8fb475217b00f165ac7685d8b25343261d01fe452d17_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:c95c4d82c802b99ca245c27dadf85a5e3a77c135d0987066deb601bbfe766329_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:1d6270489c06783cc427e661b903fffe4a514d115cff35f1b8d69b708c273768_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:5a3b66bd077ee0402fcf70530f3843b51894101e5c88b13467dd9503b834527f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:7c4af9872c4f6ced3f3751af4cb7f31742d9c760ff04151330132704c4ce61fe_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:e29fb87e700f78c9fa05085be6f5e191d840246de0969fb2e52c845a268bf1d1_s390x",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:4d31dc8eb58f9355bb98beb4a4544f7d3de3af072e8b7a232ad61f622c44beb2_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:95b249bc9d4cf115f70844235b2e58370d4dd2ace971201bc6518b3d9a40759a_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:b7acb0b482ada86354467bbf0544a61ac385f59c865147cf986f9cb09db663b0_s390x",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:cf2bf948529486ad1e61abdc38ed6f9f05733ed6bda441fc10bb88e366429669_amd64",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:3317d3fc0bde3446879c47e65412a893d7b8106f7f8efba6dde4a1e04ea090de_s390x",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:34de14f3735c84727e3bb6d1a6bb539ca1feb4932a06a6f897e81290e515c76a_amd64",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:5e8b7ca30990ee8e13700de3f82572858c563d84609158bc4d167c12d80aee26_ppc64le",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:d6fa8c2547ef2c510233a4fdd598db569e959b64f0f1a373530b33e2c0533ba7_arm64",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:1326a7cd7e94f5c4da82643f47767e371127a5644ec0a6f54a82444952f10cc0_arm64",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:1b0a964d266938f06fd6983bdd710222b0ce66bb6036ff992186940b31320ff0_ppc64le",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:82f069b742b7151b4e0f5119f100682200fc8b2561e9444132257df28601550c_s390x",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:c336fb7977ed76f54f47a888b8fd214c856c29f70b51559b3deed4cdcb7e2576_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:2d09212bd92e600e267171f16ac657ef523072a7a8f08e3b723f8a885160b6a9_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:3682ad9746f7df5b9c5b0f65618279fec68691446cb440d003c121afd5949e46_ppc64le",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:d18eba5df394859cff7ee2e8c9d0a7405b74a0a6fb4a81272b9c5fd9e4afc804_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:ef7c061171c2ec79aaca4a9085bbdcd69606fea64bcf74aab6698e7dba0595bd_arm64",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:0e674b46f728792fda06861c6fe9282e380a6e59e940b59259e0c49236c17ac7_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:67e705f850e13ba10caebd2270efc84bd9be1d5f34f1b2af68d74bb9a9b7713d_arm64",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:757febef9d392c49c61de2712e6dd9fa59bb21d2a64abec3a26df27c737ce8d4_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:7e0af82c1644ee06039c4d56f00db279d4c83f2db9ba624c71353db3032a114c_ppc64le",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:a70a65d977a56a9c64d0b004bf6dc059d3f180e13c3ed7628b217f3ec526c4f5_ppc64le",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:c069e554ec59588384d4829d3dd7b5e50972b5a215433953b8d4cd9eb6f142c5_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:d7c3fec8db9a6bbdf264e21e0e9345204aac8c2ab6cbcebcc7ec219a26139a89_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:ea6c97002b5fdf5e22a47f08a25811620004a63f02e597873601ba0246c6c5cc_arm64",
"8Base-RHOL-5.5:openshift-logging/loki-operator-bundle@sha256:39d18c04f9d6091980640bea1869bdcb28574431c8374c731adaf0aa75f4dbaf_amd64",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:366d7d20ac5f7b577bd9f4f647b726b0731bc830f71d06dd98480f0300c45e83_amd64",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:4e3af348f830133362ce9a859c1d7025b12e57f0394c352859933fcdf7f6a226_s390x",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:727c2a538f036959c1547bd0184e3ee63a14614d27e0c22f20a8b4f5444ac497_ppc64le",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:b4caab0d0a36e67f6e0c07be2cd4c0faf87691221943b7ee3042fd75f50f9096_arm64",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:03ce507ff04a810aa6297c4083641418d66b787f2403cc4580e55dfa2ae981bd_ppc64le",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:2de44e22a1e2f21c1851b0fc0bd264d508ec55637d15b5609a57c922596e597c_amd64",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:68ab07c5075fccf77f8e52602b751156d6a3dab7804ee3be578b12e3a9d767e8_arm64",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:cb75c249014ca7e344dc184355e0c05ed2a82ec1b3ba097e83ae6481f8be8682_s390x",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:184b8163e6964c788e316d1f26c91e9452a3362d04b0192dbcccacde2d6ff0ec_s390x",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:86e326e282577dee8e5e92921757b6438e2adaf70e1d28af6a4b2930db8aa103_arm64",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:b26fc09f9d6994aa83728279995f6e302a87e4d8822507ed7cba77679b339a45_ppc64le",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:b2b277023aede3d238ada29ef8e2733680aa4eb6e1e1a6e18ade52978bda1dc4_amd64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:46efef6feb75414f57b9864cb76c00377a71599054a2b0467e837626ff5b33ad_arm64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:8f2eb1e00cf1491b71180612bae76753d36936fbd4b413c48d98a9273e0b30a7_s390x",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:a9a46f31fecc1d6aa0850118f592c8e23ad34e0c3fce89866db7a8535828a256_amd64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:cd0f0a4a31ea584ae35afa99573b070a4b4eedfa38395b4507342134d0f3ad82_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-21698"
},
{
"category": "external",
"summary": "RHBZ#2045880",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2045880"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-21698",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21698"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-21698",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-21698"
},
{
"category": "external",
"summary": "https://github.com/prometheus/client_golang/security/advisories/GHSA-cg3q-j54f-5p7p",
"url": "https://github.com/prometheus/client_golang/security/advisories/GHSA-cg3q-j54f-5p7p"
}
],
"release_date": "2022-02-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-08-18T16:04:18+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:7bdf236ddcf99e13e7b03eac3665f456ea520ea34658158b37b53f5515ea2941_ppc64le",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:c989e8278a7aa5a42769666251a53bf12cf1004dfe084a08884b72dd80754503_amd64",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:d81f213923e8a162eb1a842ed04bedb23e8d069c18857ab63f9770ff222d635d_s390x",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:dfd44bf0b81480fc5af46af655474123d1c5335d9e8b363ce9cd2936bd320bea_arm64",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:48b4fe535691ed432867c9bc1ac4ec734f1e6b5ef51d11a702b99f2d1623840f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:593394515d7cbc4111d1a67703c9c083a8cb6e0d6d6f8e5b914f810e003982ca_s390x",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:6002d16f9f652b6c32ff9b53935ba28f94df3de3a0c127316b023a4d22b54cba_arm64",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:99d5577d86f78239db33862c6b7c8a7fbdd96094498a54c8e0a1c0c25f877382_amd64",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:25ac084cc90c7fd7fdd77b7c3267a16cafa88998f115d839bea4f759cb60545f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:781d52334d01ac30aeebd31d59a66677e947639cebb3322de8e53a44ab9e491e_s390x",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:8ab7813c4f5f4fcf14b45aaf657f0fa2e07d38e9fb41c2aea6d7bfe6dca23845_arm64",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:9c0f6d27cde0ea7bdc73b3cd2e274a69254e515efe1dd677b75b12fd85bf6b6b_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:6051"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOL-5.5:openshift-logging/cluster-logging-operator-bundle@sha256:b45d27fdcd7f8c574b818fe96b35d54b4039d9638b603e59df18125dfe9e1b9d_amd64",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:7bdf236ddcf99e13e7b03eac3665f456ea520ea34658158b37b53f5515ea2941_ppc64le",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:c989e8278a7aa5a42769666251a53bf12cf1004dfe084a08884b72dd80754503_amd64",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:d81f213923e8a162eb1a842ed04bedb23e8d069c18857ab63f9770ff222d635d_s390x",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:dfd44bf0b81480fc5af46af655474123d1c5335d9e8b363ce9cd2936bd320bea_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-operator-bundle@sha256:bb9d01a501c0f268fd7ec7d99b5af455bd772dd251d24220e39988dc0e58ba69_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:0653f32f429a2a51e3c24175510482a61aca9ae897934008c7022867a290fffb_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:81949b18210e889ac7d7418d2ce9af7648e65f54daccf94ed372c2d6542921fa_s390x",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:c591f62bbb9f0cc726db8fb475217b00f165ac7685d8b25343261d01fe452d17_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:c95c4d82c802b99ca245c27dadf85a5e3a77c135d0987066deb601bbfe766329_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:1d6270489c06783cc427e661b903fffe4a514d115cff35f1b8d69b708c273768_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:5a3b66bd077ee0402fcf70530f3843b51894101e5c88b13467dd9503b834527f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:7c4af9872c4f6ced3f3751af4cb7f31742d9c760ff04151330132704c4ce61fe_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:e29fb87e700f78c9fa05085be6f5e191d840246de0969fb2e52c845a268bf1d1_s390x",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:4d31dc8eb58f9355bb98beb4a4544f7d3de3af072e8b7a232ad61f622c44beb2_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:95b249bc9d4cf115f70844235b2e58370d4dd2ace971201bc6518b3d9a40759a_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:b7acb0b482ada86354467bbf0544a61ac385f59c865147cf986f9cb09db663b0_s390x",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:cf2bf948529486ad1e61abdc38ed6f9f05733ed6bda441fc10bb88e366429669_amd64",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:48b4fe535691ed432867c9bc1ac4ec734f1e6b5ef51d11a702b99f2d1623840f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:593394515d7cbc4111d1a67703c9c083a8cb6e0d6d6f8e5b914f810e003982ca_s390x",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:6002d16f9f652b6c32ff9b53935ba28f94df3de3a0c127316b023a4d22b54cba_arm64",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:99d5577d86f78239db33862c6b7c8a7fbdd96094498a54c8e0a1c0c25f877382_amd64",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:3317d3fc0bde3446879c47e65412a893d7b8106f7f8efba6dde4a1e04ea090de_s390x",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:34de14f3735c84727e3bb6d1a6bb539ca1feb4932a06a6f897e81290e515c76a_amd64",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:5e8b7ca30990ee8e13700de3f82572858c563d84609158bc4d167c12d80aee26_ppc64le",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:d6fa8c2547ef2c510233a4fdd598db569e959b64f0f1a373530b33e2c0533ba7_arm64",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:1326a7cd7e94f5c4da82643f47767e371127a5644ec0a6f54a82444952f10cc0_arm64",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:1b0a964d266938f06fd6983bdd710222b0ce66bb6036ff992186940b31320ff0_ppc64le",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:82f069b742b7151b4e0f5119f100682200fc8b2561e9444132257df28601550c_s390x",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:c336fb7977ed76f54f47a888b8fd214c856c29f70b51559b3deed4cdcb7e2576_amd64",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:25ac084cc90c7fd7fdd77b7c3267a16cafa88998f115d839bea4f759cb60545f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:781d52334d01ac30aeebd31d59a66677e947639cebb3322de8e53a44ab9e491e_s390x",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:8ab7813c4f5f4fcf14b45aaf657f0fa2e07d38e9fb41c2aea6d7bfe6dca23845_arm64",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:9c0f6d27cde0ea7bdc73b3cd2e274a69254e515efe1dd677b75b12fd85bf6b6b_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:2d09212bd92e600e267171f16ac657ef523072a7a8f08e3b723f8a885160b6a9_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:3682ad9746f7df5b9c5b0f65618279fec68691446cb440d003c121afd5949e46_ppc64le",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:d18eba5df394859cff7ee2e8c9d0a7405b74a0a6fb4a81272b9c5fd9e4afc804_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:ef7c061171c2ec79aaca4a9085bbdcd69606fea64bcf74aab6698e7dba0595bd_arm64",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:0e674b46f728792fda06861c6fe9282e380a6e59e940b59259e0c49236c17ac7_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:67e705f850e13ba10caebd2270efc84bd9be1d5f34f1b2af68d74bb9a9b7713d_arm64",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:757febef9d392c49c61de2712e6dd9fa59bb21d2a64abec3a26df27c737ce8d4_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:7e0af82c1644ee06039c4d56f00db279d4c83f2db9ba624c71353db3032a114c_ppc64le",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:a70a65d977a56a9c64d0b004bf6dc059d3f180e13c3ed7628b217f3ec526c4f5_ppc64le",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:c069e554ec59588384d4829d3dd7b5e50972b5a215433953b8d4cd9eb6f142c5_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:d7c3fec8db9a6bbdf264e21e0e9345204aac8c2ab6cbcebcc7ec219a26139a89_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:ea6c97002b5fdf5e22a47f08a25811620004a63f02e597873601ba0246c6c5cc_arm64",
"8Base-RHOL-5.5:openshift-logging/loki-operator-bundle@sha256:39d18c04f9d6091980640bea1869bdcb28574431c8374c731adaf0aa75f4dbaf_amd64",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:366d7d20ac5f7b577bd9f4f647b726b0731bc830f71d06dd98480f0300c45e83_amd64",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:4e3af348f830133362ce9a859c1d7025b12e57f0394c352859933fcdf7f6a226_s390x",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:727c2a538f036959c1547bd0184e3ee63a14614d27e0c22f20a8b4f5444ac497_ppc64le",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:b4caab0d0a36e67f6e0c07be2cd4c0faf87691221943b7ee3042fd75f50f9096_arm64",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:03ce507ff04a810aa6297c4083641418d66b787f2403cc4580e55dfa2ae981bd_ppc64le",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:2de44e22a1e2f21c1851b0fc0bd264d508ec55637d15b5609a57c922596e597c_amd64",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:68ab07c5075fccf77f8e52602b751156d6a3dab7804ee3be578b12e3a9d767e8_arm64",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:cb75c249014ca7e344dc184355e0c05ed2a82ec1b3ba097e83ae6481f8be8682_s390x",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:184b8163e6964c788e316d1f26c91e9452a3362d04b0192dbcccacde2d6ff0ec_s390x",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:86e326e282577dee8e5e92921757b6438e2adaf70e1d28af6a4b2930db8aa103_arm64",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:b26fc09f9d6994aa83728279995f6e302a87e4d8822507ed7cba77679b339a45_ppc64le",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:b2b277023aede3d238ada29ef8e2733680aa4eb6e1e1a6e18ade52978bda1dc4_amd64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:46efef6feb75414f57b9864cb76c00377a71599054a2b0467e837626ff5b33ad_arm64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:8f2eb1e00cf1491b71180612bae76753d36936fbd4b413c48d98a9273e0b30a7_s390x",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:a9a46f31fecc1d6aa0850118f592c8e23ad34e0c3fce89866db7a8535828a256_amd64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:cd0f0a4a31ea584ae35afa99573b070a4b4eedfa38395b4507342134d0f3ad82_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "prometheus/client_golang: Denial of service using InstrumentHandlerCounter"
},
{
"cve": "CVE-2022-30631",
"cwe": {
"id": "CWE-1325",
"name": "Improperly Controlled Sequential Memory Allocation"
},
"discovery_date": "2022-07-14T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHOL-5.5:openshift-logging/cluster-logging-operator-bundle@sha256:b45d27fdcd7f8c574b818fe96b35d54b4039d9638b603e59df18125dfe9e1b9d_amd64",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:7bdf236ddcf99e13e7b03eac3665f456ea520ea34658158b37b53f5515ea2941_ppc64le",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:c989e8278a7aa5a42769666251a53bf12cf1004dfe084a08884b72dd80754503_amd64",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:d81f213923e8a162eb1a842ed04bedb23e8d069c18857ab63f9770ff222d635d_s390x",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:dfd44bf0b81480fc5af46af655474123d1c5335d9e8b363ce9cd2936bd320bea_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-operator-bundle@sha256:bb9d01a501c0f268fd7ec7d99b5af455bd772dd251d24220e39988dc0e58ba69_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:4d31dc8eb58f9355bb98beb4a4544f7d3de3af072e8b7a232ad61f622c44beb2_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:95b249bc9d4cf115f70844235b2e58370d4dd2ace971201bc6518b3d9a40759a_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:b7acb0b482ada86354467bbf0544a61ac385f59c865147cf986f9cb09db663b0_s390x",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:cf2bf948529486ad1e61abdc38ed6f9f05733ed6bda441fc10bb88e366429669_amd64",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:48b4fe535691ed432867c9bc1ac4ec734f1e6b5ef51d11a702b99f2d1623840f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:593394515d7cbc4111d1a67703c9c083a8cb6e0d6d6f8e5b914f810e003982ca_s390x",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:6002d16f9f652b6c32ff9b53935ba28f94df3de3a0c127316b023a4d22b54cba_arm64",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:99d5577d86f78239db33862c6b7c8a7fbdd96094498a54c8e0a1c0c25f877382_amd64",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:3317d3fc0bde3446879c47e65412a893d7b8106f7f8efba6dde4a1e04ea090de_s390x",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:34de14f3735c84727e3bb6d1a6bb539ca1feb4932a06a6f897e81290e515c76a_amd64",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:5e8b7ca30990ee8e13700de3f82572858c563d84609158bc4d167c12d80aee26_ppc64le",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:d6fa8c2547ef2c510233a4fdd598db569e959b64f0f1a373530b33e2c0533ba7_arm64",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:1326a7cd7e94f5c4da82643f47767e371127a5644ec0a6f54a82444952f10cc0_arm64",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:1b0a964d266938f06fd6983bdd710222b0ce66bb6036ff992186940b31320ff0_ppc64le",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:82f069b742b7151b4e0f5119f100682200fc8b2561e9444132257df28601550c_s390x",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:c336fb7977ed76f54f47a888b8fd214c856c29f70b51559b3deed4cdcb7e2576_amd64",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:25ac084cc90c7fd7fdd77b7c3267a16cafa88998f115d839bea4f759cb60545f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:781d52334d01ac30aeebd31d59a66677e947639cebb3322de8e53a44ab9e491e_s390x",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:8ab7813c4f5f4fcf14b45aaf657f0fa2e07d38e9fb41c2aea6d7bfe6dca23845_arm64",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:9c0f6d27cde0ea7bdc73b3cd2e274a69254e515efe1dd677b75b12fd85bf6b6b_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:2d09212bd92e600e267171f16ac657ef523072a7a8f08e3b723f8a885160b6a9_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:3682ad9746f7df5b9c5b0f65618279fec68691446cb440d003c121afd5949e46_ppc64le",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:d18eba5df394859cff7ee2e8c9d0a7405b74a0a6fb4a81272b9c5fd9e4afc804_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:ef7c061171c2ec79aaca4a9085bbdcd69606fea64bcf74aab6698e7dba0595bd_arm64",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:a70a65d977a56a9c64d0b004bf6dc059d3f180e13c3ed7628b217f3ec526c4f5_ppc64le",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:c069e554ec59588384d4829d3dd7b5e50972b5a215433953b8d4cd9eb6f142c5_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:d7c3fec8db9a6bbdf264e21e0e9345204aac8c2ab6cbcebcc7ec219a26139a89_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:ea6c97002b5fdf5e22a47f08a25811620004a63f02e597873601ba0246c6c5cc_arm64",
"8Base-RHOL-5.5:openshift-logging/loki-operator-bundle@sha256:39d18c04f9d6091980640bea1869bdcb28574431c8374c731adaf0aa75f4dbaf_amd64",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:366d7d20ac5f7b577bd9f4f647b726b0731bc830f71d06dd98480f0300c45e83_amd64",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:4e3af348f830133362ce9a859c1d7025b12e57f0394c352859933fcdf7f6a226_s390x",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:727c2a538f036959c1547bd0184e3ee63a14614d27e0c22f20a8b4f5444ac497_ppc64le",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:b4caab0d0a36e67f6e0c07be2cd4c0faf87691221943b7ee3042fd75f50f9096_arm64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:46efef6feb75414f57b9864cb76c00377a71599054a2b0467e837626ff5b33ad_arm64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:8f2eb1e00cf1491b71180612bae76753d36936fbd4b413c48d98a9273e0b30a7_s390x",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:a9a46f31fecc1d6aa0850118f592c8e23ad34e0c3fce89866db7a8535828a256_amd64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:cd0f0a4a31ea584ae35afa99573b070a4b4eedfa38395b4507342134d0f3ad82_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2107342"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. Calling the Reader, Read method on an archive that contains a large number of concatenated 0-length compressed files can cause a panic issue due to stack exhaustion.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: compress/gzip: stack exhaustion in Reader.Read",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:0653f32f429a2a51e3c24175510482a61aca9ae897934008c7022867a290fffb_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:81949b18210e889ac7d7418d2ce9af7648e65f54daccf94ed372c2d6542921fa_s390x",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:c591f62bbb9f0cc726db8fb475217b00f165ac7685d8b25343261d01fe452d17_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:c95c4d82c802b99ca245c27dadf85a5e3a77c135d0987066deb601bbfe766329_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:1d6270489c06783cc427e661b903fffe4a514d115cff35f1b8d69b708c273768_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:5a3b66bd077ee0402fcf70530f3843b51894101e5c88b13467dd9503b834527f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:7c4af9872c4f6ced3f3751af4cb7f31742d9c760ff04151330132704c4ce61fe_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:e29fb87e700f78c9fa05085be6f5e191d840246de0969fb2e52c845a268bf1d1_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:0e674b46f728792fda06861c6fe9282e380a6e59e940b59259e0c49236c17ac7_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:67e705f850e13ba10caebd2270efc84bd9be1d5f34f1b2af68d74bb9a9b7713d_arm64",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:757febef9d392c49c61de2712e6dd9fa59bb21d2a64abec3a26df27c737ce8d4_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:7e0af82c1644ee06039c4d56f00db279d4c83f2db9ba624c71353db3032a114c_ppc64le",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:03ce507ff04a810aa6297c4083641418d66b787f2403cc4580e55dfa2ae981bd_ppc64le",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:2de44e22a1e2f21c1851b0fc0bd264d508ec55637d15b5609a57c922596e597c_amd64",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:68ab07c5075fccf77f8e52602b751156d6a3dab7804ee3be578b12e3a9d767e8_arm64",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:cb75c249014ca7e344dc184355e0c05ed2a82ec1b3ba097e83ae6481f8be8682_s390x",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:184b8163e6964c788e316d1f26c91e9452a3362d04b0192dbcccacde2d6ff0ec_s390x",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:86e326e282577dee8e5e92921757b6438e2adaf70e1d28af6a4b2930db8aa103_arm64",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:b26fc09f9d6994aa83728279995f6e302a87e4d8822507ed7cba77679b339a45_ppc64le",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:b2b277023aede3d238ada29ef8e2733680aa4eb6e1e1a6e18ade52978bda1dc4_amd64"
],
"known_not_affected": [
"8Base-RHOL-5.5:openshift-logging/cluster-logging-operator-bundle@sha256:b45d27fdcd7f8c574b818fe96b35d54b4039d9638b603e59df18125dfe9e1b9d_amd64",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:7bdf236ddcf99e13e7b03eac3665f456ea520ea34658158b37b53f5515ea2941_ppc64le",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:c989e8278a7aa5a42769666251a53bf12cf1004dfe084a08884b72dd80754503_amd64",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:d81f213923e8a162eb1a842ed04bedb23e8d069c18857ab63f9770ff222d635d_s390x",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:dfd44bf0b81480fc5af46af655474123d1c5335d9e8b363ce9cd2936bd320bea_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-operator-bundle@sha256:bb9d01a501c0f268fd7ec7d99b5af455bd772dd251d24220e39988dc0e58ba69_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:4d31dc8eb58f9355bb98beb4a4544f7d3de3af072e8b7a232ad61f622c44beb2_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:95b249bc9d4cf115f70844235b2e58370d4dd2ace971201bc6518b3d9a40759a_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:b7acb0b482ada86354467bbf0544a61ac385f59c865147cf986f9cb09db663b0_s390x",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:cf2bf948529486ad1e61abdc38ed6f9f05733ed6bda441fc10bb88e366429669_amd64",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:48b4fe535691ed432867c9bc1ac4ec734f1e6b5ef51d11a702b99f2d1623840f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:593394515d7cbc4111d1a67703c9c083a8cb6e0d6d6f8e5b914f810e003982ca_s390x",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:6002d16f9f652b6c32ff9b53935ba28f94df3de3a0c127316b023a4d22b54cba_arm64",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:99d5577d86f78239db33862c6b7c8a7fbdd96094498a54c8e0a1c0c25f877382_amd64",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:3317d3fc0bde3446879c47e65412a893d7b8106f7f8efba6dde4a1e04ea090de_s390x",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:34de14f3735c84727e3bb6d1a6bb539ca1feb4932a06a6f897e81290e515c76a_amd64",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:5e8b7ca30990ee8e13700de3f82572858c563d84609158bc4d167c12d80aee26_ppc64le",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:d6fa8c2547ef2c510233a4fdd598db569e959b64f0f1a373530b33e2c0533ba7_arm64",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:1326a7cd7e94f5c4da82643f47767e371127a5644ec0a6f54a82444952f10cc0_arm64",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:1b0a964d266938f06fd6983bdd710222b0ce66bb6036ff992186940b31320ff0_ppc64le",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:82f069b742b7151b4e0f5119f100682200fc8b2561e9444132257df28601550c_s390x",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:c336fb7977ed76f54f47a888b8fd214c856c29f70b51559b3deed4cdcb7e2576_amd64",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:25ac084cc90c7fd7fdd77b7c3267a16cafa88998f115d839bea4f759cb60545f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:781d52334d01ac30aeebd31d59a66677e947639cebb3322de8e53a44ab9e491e_s390x",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:8ab7813c4f5f4fcf14b45aaf657f0fa2e07d38e9fb41c2aea6d7bfe6dca23845_arm64",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:9c0f6d27cde0ea7bdc73b3cd2e274a69254e515efe1dd677b75b12fd85bf6b6b_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:2d09212bd92e600e267171f16ac657ef523072a7a8f08e3b723f8a885160b6a9_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:3682ad9746f7df5b9c5b0f65618279fec68691446cb440d003c121afd5949e46_ppc64le",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:d18eba5df394859cff7ee2e8c9d0a7405b74a0a6fb4a81272b9c5fd9e4afc804_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:ef7c061171c2ec79aaca4a9085bbdcd69606fea64bcf74aab6698e7dba0595bd_arm64",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:a70a65d977a56a9c64d0b004bf6dc059d3f180e13c3ed7628b217f3ec526c4f5_ppc64le",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:c069e554ec59588384d4829d3dd7b5e50972b5a215433953b8d4cd9eb6f142c5_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:d7c3fec8db9a6bbdf264e21e0e9345204aac8c2ab6cbcebcc7ec219a26139a89_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:ea6c97002b5fdf5e22a47f08a25811620004a63f02e597873601ba0246c6c5cc_arm64",
"8Base-RHOL-5.5:openshift-logging/loki-operator-bundle@sha256:39d18c04f9d6091980640bea1869bdcb28574431c8374c731adaf0aa75f4dbaf_amd64",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:366d7d20ac5f7b577bd9f4f647b726b0731bc830f71d06dd98480f0300c45e83_amd64",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:4e3af348f830133362ce9a859c1d7025b12e57f0394c352859933fcdf7f6a226_s390x",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:727c2a538f036959c1547bd0184e3ee63a14614d27e0c22f20a8b4f5444ac497_ppc64le",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:b4caab0d0a36e67f6e0c07be2cd4c0faf87691221943b7ee3042fd75f50f9096_arm64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:46efef6feb75414f57b9864cb76c00377a71599054a2b0467e837626ff5b33ad_arm64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:8f2eb1e00cf1491b71180612bae76753d36936fbd4b413c48d98a9273e0b30a7_s390x",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:a9a46f31fecc1d6aa0850118f592c8e23ad34e0c3fce89866db7a8535828a256_amd64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:cd0f0a4a31ea584ae35afa99573b070a4b4eedfa38395b4507342134d0f3ad82_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-30631"
},
{
"category": "external",
"summary": "RHBZ#2107342",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2107342"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-30631",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-30631"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-30631",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-30631"
},
{
"category": "external",
"summary": "https://go.dev/issue/53168",
"url": "https://go.dev/issue/53168"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/nqrv9fbR0zE",
"url": "https://groups.google.com/g/golang-announce/c/nqrv9fbR0zE"
}
],
"release_date": "2022-07-12T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-08-18T16:04:18+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:0653f32f429a2a51e3c24175510482a61aca9ae897934008c7022867a290fffb_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:81949b18210e889ac7d7418d2ce9af7648e65f54daccf94ed372c2d6542921fa_s390x",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:c591f62bbb9f0cc726db8fb475217b00f165ac7685d8b25343261d01fe452d17_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:c95c4d82c802b99ca245c27dadf85a5e3a77c135d0987066deb601bbfe766329_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:1d6270489c06783cc427e661b903fffe4a514d115cff35f1b8d69b708c273768_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:5a3b66bd077ee0402fcf70530f3843b51894101e5c88b13467dd9503b834527f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:7c4af9872c4f6ced3f3751af4cb7f31742d9c760ff04151330132704c4ce61fe_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:e29fb87e700f78c9fa05085be6f5e191d840246de0969fb2e52c845a268bf1d1_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:0e674b46f728792fda06861c6fe9282e380a6e59e940b59259e0c49236c17ac7_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:67e705f850e13ba10caebd2270efc84bd9be1d5f34f1b2af68d74bb9a9b7713d_arm64",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:757febef9d392c49c61de2712e6dd9fa59bb21d2a64abec3a26df27c737ce8d4_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:7e0af82c1644ee06039c4d56f00db279d4c83f2db9ba624c71353db3032a114c_ppc64le",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:03ce507ff04a810aa6297c4083641418d66b787f2403cc4580e55dfa2ae981bd_ppc64le",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:2de44e22a1e2f21c1851b0fc0bd264d508ec55637d15b5609a57c922596e597c_amd64",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:68ab07c5075fccf77f8e52602b751156d6a3dab7804ee3be578b12e3a9d767e8_arm64",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:cb75c249014ca7e344dc184355e0c05ed2a82ec1b3ba097e83ae6481f8be8682_s390x",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:184b8163e6964c788e316d1f26c91e9452a3362d04b0192dbcccacde2d6ff0ec_s390x",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:86e326e282577dee8e5e92921757b6438e2adaf70e1d28af6a4b2930db8aa103_arm64",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:b26fc09f9d6994aa83728279995f6e302a87e4d8822507ed7cba77679b339a45_ppc64le",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:b2b277023aede3d238ada29ef8e2733680aa4eb6e1e1a6e18ade52978bda1dc4_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:6051"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOL-5.5:openshift-logging/cluster-logging-operator-bundle@sha256:b45d27fdcd7f8c574b818fe96b35d54b4039d9638b603e59df18125dfe9e1b9d_amd64",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:7bdf236ddcf99e13e7b03eac3665f456ea520ea34658158b37b53f5515ea2941_ppc64le",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:c989e8278a7aa5a42769666251a53bf12cf1004dfe084a08884b72dd80754503_amd64",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:d81f213923e8a162eb1a842ed04bedb23e8d069c18857ab63f9770ff222d635d_s390x",
"8Base-RHOL-5.5:openshift-logging/cluster-logging-rhel8-operator@sha256:dfd44bf0b81480fc5af46af655474123d1c5335d9e8b363ce9cd2936bd320bea_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-operator-bundle@sha256:bb9d01a501c0f268fd7ec7d99b5af455bd772dd251d24220e39988dc0e58ba69_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:0653f32f429a2a51e3c24175510482a61aca9ae897934008c7022867a290fffb_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:81949b18210e889ac7d7418d2ce9af7648e65f54daccf94ed372c2d6542921fa_s390x",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:c591f62bbb9f0cc726db8fb475217b00f165ac7685d8b25343261d01fe452d17_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-proxy-rhel8@sha256:c95c4d82c802b99ca245c27dadf85a5e3a77c135d0987066deb601bbfe766329_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:1d6270489c06783cc427e661b903fffe4a514d115cff35f1b8d69b708c273768_amd64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:5a3b66bd077ee0402fcf70530f3843b51894101e5c88b13467dd9503b834527f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:7c4af9872c4f6ced3f3751af4cb7f31742d9c760ff04151330132704c4ce61fe_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch-rhel8-operator@sha256:e29fb87e700f78c9fa05085be6f5e191d840246de0969fb2e52c845a268bf1d1_s390x",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:4d31dc8eb58f9355bb98beb4a4544f7d3de3af072e8b7a232ad61f622c44beb2_arm64",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:95b249bc9d4cf115f70844235b2e58370d4dd2ace971201bc6518b3d9a40759a_ppc64le",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:b7acb0b482ada86354467bbf0544a61ac385f59c865147cf986f9cb09db663b0_s390x",
"8Base-RHOL-5.5:openshift-logging/elasticsearch6-rhel8@sha256:cf2bf948529486ad1e61abdc38ed6f9f05733ed6bda441fc10bb88e366429669_amd64",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:48b4fe535691ed432867c9bc1ac4ec734f1e6b5ef51d11a702b99f2d1623840f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:593394515d7cbc4111d1a67703c9c083a8cb6e0d6d6f8e5b914f810e003982ca_s390x",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:6002d16f9f652b6c32ff9b53935ba28f94df3de3a0c127316b023a4d22b54cba_arm64",
"8Base-RHOL-5.5:openshift-logging/eventrouter-rhel8@sha256:99d5577d86f78239db33862c6b7c8a7fbdd96094498a54c8e0a1c0c25f877382_amd64",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:3317d3fc0bde3446879c47e65412a893d7b8106f7f8efba6dde4a1e04ea090de_s390x",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:34de14f3735c84727e3bb6d1a6bb539ca1feb4932a06a6f897e81290e515c76a_amd64",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:5e8b7ca30990ee8e13700de3f82572858c563d84609158bc4d167c12d80aee26_ppc64le",
"8Base-RHOL-5.5:openshift-logging/fluentd-rhel8@sha256:d6fa8c2547ef2c510233a4fdd598db569e959b64f0f1a373530b33e2c0533ba7_arm64",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:1326a7cd7e94f5c4da82643f47767e371127a5644ec0a6f54a82444952f10cc0_arm64",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:1b0a964d266938f06fd6983bdd710222b0ce66bb6036ff992186940b31320ff0_ppc64le",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:82f069b742b7151b4e0f5119f100682200fc8b2561e9444132257df28601550c_s390x",
"8Base-RHOL-5.5:openshift-logging/kibana6-rhel8@sha256:c336fb7977ed76f54f47a888b8fd214c856c29f70b51559b3deed4cdcb7e2576_amd64",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:25ac084cc90c7fd7fdd77b7c3267a16cafa88998f115d839bea4f759cb60545f_ppc64le",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:781d52334d01ac30aeebd31d59a66677e947639cebb3322de8e53a44ab9e491e_s390x",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:8ab7813c4f5f4fcf14b45aaf657f0fa2e07d38e9fb41c2aea6d7bfe6dca23845_arm64",
"8Base-RHOL-5.5:openshift-logging/log-file-metric-exporter-rhel8@sha256:9c0f6d27cde0ea7bdc73b3cd2e274a69254e515efe1dd677b75b12fd85bf6b6b_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:2d09212bd92e600e267171f16ac657ef523072a7a8f08e3b723f8a885160b6a9_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:3682ad9746f7df5b9c5b0f65618279fec68691446cb440d003c121afd5949e46_ppc64le",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:d18eba5df394859cff7ee2e8c9d0a7405b74a0a6fb4a81272b9c5fd9e4afc804_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-curator5-rhel8@sha256:ef7c061171c2ec79aaca4a9085bbdcd69606fea64bcf74aab6698e7dba0595bd_arm64",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:0e674b46f728792fda06861c6fe9282e380a6e59e940b59259e0c49236c17ac7_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:67e705f850e13ba10caebd2270efc84bd9be1d5f34f1b2af68d74bb9a9b7713d_arm64",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:757febef9d392c49c61de2712e6dd9fa59bb21d2a64abec3a26df27c737ce8d4_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-loki-rhel8@sha256:7e0af82c1644ee06039c4d56f00db279d4c83f2db9ba624c71353db3032a114c_ppc64le",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:a70a65d977a56a9c64d0b004bf6dc059d3f180e13c3ed7628b217f3ec526c4f5_ppc64le",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:c069e554ec59588384d4829d3dd7b5e50972b5a215433953b8d4cd9eb6f142c5_s390x",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:d7c3fec8db9a6bbdf264e21e0e9345204aac8c2ab6cbcebcc7ec219a26139a89_amd64",
"8Base-RHOL-5.5:openshift-logging/logging-view-plugin-rhel8@sha256:ea6c97002b5fdf5e22a47f08a25811620004a63f02e597873601ba0246c6c5cc_arm64",
"8Base-RHOL-5.5:openshift-logging/loki-operator-bundle@sha256:39d18c04f9d6091980640bea1869bdcb28574431c8374c731adaf0aa75f4dbaf_amd64",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:366d7d20ac5f7b577bd9f4f647b726b0731bc830f71d06dd98480f0300c45e83_amd64",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:4e3af348f830133362ce9a859c1d7025b12e57f0394c352859933fcdf7f6a226_s390x",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:727c2a538f036959c1547bd0184e3ee63a14614d27e0c22f20a8b4f5444ac497_ppc64le",
"8Base-RHOL-5.5:openshift-logging/loki-rhel8-operator@sha256:b4caab0d0a36e67f6e0c07be2cd4c0faf87691221943b7ee3042fd75f50f9096_arm64",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:03ce507ff04a810aa6297c4083641418d66b787f2403cc4580e55dfa2ae981bd_ppc64le",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:2de44e22a1e2f21c1851b0fc0bd264d508ec55637d15b5609a57c922596e597c_amd64",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:68ab07c5075fccf77f8e52602b751156d6a3dab7804ee3be578b12e3a9d767e8_arm64",
"8Base-RHOL-5.5:openshift-logging/lokistack-gateway-rhel8@sha256:cb75c249014ca7e344dc184355e0c05ed2a82ec1b3ba097e83ae6481f8be8682_s390x",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:184b8163e6964c788e316d1f26c91e9452a3362d04b0192dbcccacde2d6ff0ec_s390x",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:86e326e282577dee8e5e92921757b6438e2adaf70e1d28af6a4b2930db8aa103_arm64",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:b26fc09f9d6994aa83728279995f6e302a87e4d8822507ed7cba77679b339a45_ppc64le",
"8Base-RHOL-5.5:openshift-logging/opa-openshift-rhel8@sha256:b2b277023aede3d238ada29ef8e2733680aa4eb6e1e1a6e18ade52978bda1dc4_amd64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:46efef6feb75414f57b9864cb76c00377a71599054a2b0467e837626ff5b33ad_arm64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:8f2eb1e00cf1491b71180612bae76753d36936fbd4b413c48d98a9273e0b30a7_s390x",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:a9a46f31fecc1d6aa0850118f592c8e23ad34e0c3fce89866db7a8535828a256_amd64",
"8Base-RHOL-5.5:openshift-logging/vector-rhel8@sha256:cd0f0a4a31ea584ae35afa99573b070a4b4eedfa38395b4507342134d0f3ad82_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: compress/gzip: stack exhaustion in Reader.Read"
}
]
}
rhsa-2022_2218
Vulnerability from csaf_redhat
Published
2022-05-11 19:51
Modified
2024-12-08 13:56
Summary
Red Hat Security Advisory: Openshift Logging Security and Bug update Release (5.2.10)
Notes
Topic
Openshift Logging Bug Fix Release (5.2.10)
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Openshift Logging Bug Fix Release (5.2.10)
Security Fix(es):
* kubeclient: kubeconfig parsing error can lead to MITM attacks (CVE-2022-0759)
* netty-codec: Bzip2Decoder doesn't allow setting size restrictions for decompressed data (CVE-2021-37136)
* netty-codec: SnappyFrameDecoder doesn't restrict chunk length and may buffer skippable chunks in an unnecessary way (CVE-2021-37137)
* netty: control chars in header names may lead to HTTP request smuggling (CVE-2021-43797)
* prometheus/client_golang: Denial of service using InstrumentHandlerCounter (CVE-2022-21698)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Openshift Logging Bug Fix Release (5.2.10)\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Openshift Logging Bug Fix Release (5.2.10)\n\nSecurity Fix(es):\n\n* kubeclient: kubeconfig parsing error can lead to MITM attacks (CVE-2022-0759)\n\n* netty-codec: Bzip2Decoder doesn\u0027t allow setting size restrictions for decompressed data (CVE-2021-37136)\n\n* netty-codec: SnappyFrameDecoder doesn\u0027t restrict chunk length and may buffer skippable chunks in an unnecessary way (CVE-2021-37137)\n\n* netty: control chars in header names may lead to HTTP request smuggling (CVE-2021-43797)\n\n* prometheus/client_golang: Denial of service using InstrumentHandlerCounter (CVE-2022-21698)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2022:2218",
"url": "https://access.redhat.com/errata/RHSA-2022:2218"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2004133",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2004133"
},
{
"category": "external",
"summary": "2004135",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2004135"
},
{
"category": "external",
"summary": "2031958",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2031958"
},
{
"category": "external",
"summary": "2045880",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2045880"
},
{
"category": "external",
"summary": "2058404",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2058404"
},
{
"category": "external",
"summary": "LOG-1972",
"url": "https://issues.redhat.com/browse/LOG-1972"
},
{
"category": "external",
"summary": "LOG-2335",
"url": "https://issues.redhat.com/browse/LOG-2335"
},
{
"category": "external",
"summary": "LOG-2475",
"url": "https://issues.redhat.com/browse/LOG-2475"
},
{
"category": "external",
"summary": "LOG-2480",
"url": "https://issues.redhat.com/browse/LOG-2480"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_2218.json"
}
],
"title": "Red Hat Security Advisory: Openshift Logging Security and Bug update Release (5.2.10)",
"tracking": {
"current_release_date": "2024-12-08T13:56:30+00:00",
"generator": {
"date": "2024-12-08T13:56:30+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.3"
}
},
"id": "RHSA-2022:2218",
"initial_release_date": "2022-05-11T19:51:53+00:00",
"revision_history": [
{
"date": "2022-05-11T19:51:53+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2022-05-11T19:51:53+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-12-08T13:56:30+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "OpenShift Logging 5.2",
"product": {
"name": "OpenShift Logging 5.2",
"product_id": "8Base-OSE-LOGGING-5.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:logging:5.2::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-logging/cluster-logging-rhel8-operator@sha256:789a92c72f43e7144f7a606ded1d46dd37905d455f742dc6432e1a6f7cd1166b_amd64",
"product": {
"name": "openshift-logging/cluster-logging-rhel8-operator@sha256:789a92c72f43e7144f7a606ded1d46dd37905d455f742dc6432e1a6f7cd1166b_amd64",
"product_id": "openshift-logging/cluster-logging-rhel8-operator@sha256:789a92c72f43e7144f7a606ded1d46dd37905d455f742dc6432e1a6f7cd1166b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-rhel8-operator@sha256:789a92c72f43e7144f7a606ded1d46dd37905d455f742dc6432e1a6f7cd1166b?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/cluster-logging-rhel8-operator\u0026tag=v5.2.10-5"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/cluster-logging-operator-bundle@sha256:e4ffb0fd45e60c7bfb77ca368f41064fd73e442390a502f8f393ae81839c00a3_amd64",
"product": {
"name": "openshift-logging/cluster-logging-operator-bundle@sha256:e4ffb0fd45e60c7bfb77ca368f41064fd73e442390a502f8f393ae81839c00a3_amd64",
"product_id": "openshift-logging/cluster-logging-operator-bundle@sha256:e4ffb0fd45e60c7bfb77ca368f41064fd73e442390a502f8f393ae81839c00a3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-operator-bundle@sha256:e4ffb0fd45e60c7bfb77ca368f41064fd73e442390a502f8f393ae81839c00a3?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/cluster-logging-operator-bundle\u0026tag=v5.2.10-22"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch-rhel8-operator@sha256:60ec64113b27eb5dfb0b8857174efc3a98da8892493a9fa2988dfc24d0539863_amd64",
"product": {
"name": "openshift-logging/elasticsearch-rhel8-operator@sha256:60ec64113b27eb5dfb0b8857174efc3a98da8892493a9fa2988dfc24d0539863_amd64",
"product_id": "openshift-logging/elasticsearch-rhel8-operator@sha256:60ec64113b27eb5dfb0b8857174efc3a98da8892493a9fa2988dfc24d0539863_amd64",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch-rhel8-operator@sha256:60ec64113b27eb5dfb0b8857174efc3a98da8892493a9fa2988dfc24d0539863?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch-rhel8-operator\u0026tag=v5.2.10-5"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch-operator-bundle@sha256:9321f376ff20443db006135e17060f6d5e0e95643d16cb9b8a839b9f95746fe0_amd64",
"product": {
"name": "openshift-logging/elasticsearch-operator-bundle@sha256:9321f376ff20443db006135e17060f6d5e0e95643d16cb9b8a839b9f95746fe0_amd64",
"product_id": "openshift-logging/elasticsearch-operator-bundle@sha256:9321f376ff20443db006135e17060f6d5e0e95643d16cb9b8a839b9f95746fe0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch-operator-bundle@sha256:9321f376ff20443db006135e17060f6d5e0e95643d16cb9b8a839b9f95746fe0?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch-operator-bundle\u0026tag=v5.2.10-18"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch-proxy-rhel8@sha256:8cba0a6f2a32e8d37abb7e00f461a8ed3415c53ab3aca350b138687f636acf5a_amd64",
"product": {
"name": "openshift-logging/elasticsearch-proxy-rhel8@sha256:8cba0a6f2a32e8d37abb7e00f461a8ed3415c53ab3aca350b138687f636acf5a_amd64",
"product_id": "openshift-logging/elasticsearch-proxy-rhel8@sha256:8cba0a6f2a32e8d37abb7e00f461a8ed3415c53ab3aca350b138687f636acf5a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch-proxy-rhel8@sha256:8cba0a6f2a32e8d37abb7e00f461a8ed3415c53ab3aca350b138687f636acf5a?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel8\u0026tag=v1.0.0-168"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/log-file-metric-exporter-rhel8@sha256:93e626d851e4251ac8adf5c11328f9e774f36880e9f853a75d6eca43b5f09e76_amd64",
"product": {
"name": "openshift-logging/log-file-metric-exporter-rhel8@sha256:93e626d851e4251ac8adf5c11328f9e774f36880e9f853a75d6eca43b5f09e76_amd64",
"product_id": "openshift-logging/log-file-metric-exporter-rhel8@sha256:93e626d851e4251ac8adf5c11328f9e774f36880e9f853a75d6eca43b5f09e76_amd64",
"product_identification_helper": {
"purl": "pkg:oci/log-file-metric-exporter-rhel8@sha256:93e626d851e4251ac8adf5c11328f9e774f36880e9f853a75d6eca43b5f09e76?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel8\u0026tag=v1.0.0-124"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-curator5-rhel8@sha256:d4f09349b8ad4c53463bab012ce783ab53111f4fc2bca790d61e7ded91e0e37e_amd64",
"product": {
"name": "openshift-logging/logging-curator5-rhel8@sha256:d4f09349b8ad4c53463bab012ce783ab53111f4fc2bca790d61e7ded91e0e37e_amd64",
"product_id": "openshift-logging/logging-curator5-rhel8@sha256:d4f09349b8ad4c53463bab012ce783ab53111f4fc2bca790d61e7ded91e0e37e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/logging-curator5-rhel8@sha256:d4f09349b8ad4c53463bab012ce783ab53111f4fc2bca790d61e7ded91e0e37e?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/logging-curator5-rhel8\u0026tag=v5.8.1-124"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch6-rhel8@sha256:267643d1c7686a12e548846a2b15ed1dd9af67353fad47487390b67da61cb833_amd64",
"product": {
"name": "openshift-logging/elasticsearch6-rhel8@sha256:267643d1c7686a12e548846a2b15ed1dd9af67353fad47487390b67da61cb833_amd64",
"product_id": "openshift-logging/elasticsearch6-rhel8@sha256:267643d1c7686a12e548846a2b15ed1dd9af67353fad47487390b67da61cb833_amd64",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch6-rhel8@sha256:267643d1c7686a12e548846a2b15ed1dd9af67353fad47487390b67da61cb833?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch6-rhel8\u0026tag=v6.8.1-157"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/eventrouter-rhel8@sha256:90c95cdb1833dc963c4f20ee1ef490eab39a194a5fd3388dd334627d0da35bb1_amd64",
"product": {
"name": "openshift-logging/eventrouter-rhel8@sha256:90c95cdb1833dc963c4f20ee1ef490eab39a194a5fd3388dd334627d0da35bb1_amd64",
"product_id": "openshift-logging/eventrouter-rhel8@sha256:90c95cdb1833dc963c4f20ee1ef490eab39a194a5fd3388dd334627d0da35bb1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/eventrouter-rhel8@sha256:90c95cdb1833dc963c4f20ee1ef490eab39a194a5fd3388dd334627d0da35bb1?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/eventrouter-rhel8\u0026tag=v0.3.0-161"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/fluentd-rhel8@sha256:5846c4532557edd75fb21e46a2e7df9ef2d49750fb3e6c207da8437214f84801_amd64",
"product": {
"name": "openshift-logging/fluentd-rhel8@sha256:5846c4532557edd75fb21e46a2e7df9ef2d49750fb3e6c207da8437214f84801_amd64",
"product_id": "openshift-logging/fluentd-rhel8@sha256:5846c4532557edd75fb21e46a2e7df9ef2d49750fb3e6c207da8437214f84801_amd64",
"product_identification_helper": {
"purl": "pkg:oci/fluentd-rhel8@sha256:5846c4532557edd75fb21e46a2e7df9ef2d49750fb3e6c207da8437214f84801?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/fluentd-rhel8\u0026tag=v1.7.4-176"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/kibana6-rhel8@sha256:e712c9de32b6e58a7abd2baebac2cc4e6c6d448b87e5e4d6241410166c6b37fe_amd64",
"product": {
"name": "openshift-logging/kibana6-rhel8@sha256:e712c9de32b6e58a7abd2baebac2cc4e6c6d448b87e5e4d6241410166c6b37fe_amd64",
"product_id": "openshift-logging/kibana6-rhel8@sha256:e712c9de32b6e58a7abd2baebac2cc4e6c6d448b87e5e4d6241410166c6b37fe_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kibana6-rhel8@sha256:e712c9de32b6e58a7abd2baebac2cc4e6c6d448b87e5e4d6241410166c6b37fe?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/kibana6-rhel8\u0026tag=v6.8.1-188"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-logging/cluster-logging-rhel8-operator@sha256:65f4692fd0c2ec0edb10078bcf0c1760ddc13820ab1ca5324fdf610fb5a8fefb_s390x",
"product": {
"name": "openshift-logging/cluster-logging-rhel8-operator@sha256:65f4692fd0c2ec0edb10078bcf0c1760ddc13820ab1ca5324fdf610fb5a8fefb_s390x",
"product_id": "openshift-logging/cluster-logging-rhel8-operator@sha256:65f4692fd0c2ec0edb10078bcf0c1760ddc13820ab1ca5324fdf610fb5a8fefb_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-rhel8-operator@sha256:65f4692fd0c2ec0edb10078bcf0c1760ddc13820ab1ca5324fdf610fb5a8fefb?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/cluster-logging-rhel8-operator\u0026tag=v5.2.10-5"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch-rhel8-operator@sha256:7b2af74b2e17b9d7a94dca9d80c8f7a0888f176b3044719f82d324c51124e812_s390x",
"product": {
"name": "openshift-logging/elasticsearch-rhel8-operator@sha256:7b2af74b2e17b9d7a94dca9d80c8f7a0888f176b3044719f82d324c51124e812_s390x",
"product_id": "openshift-logging/elasticsearch-rhel8-operator@sha256:7b2af74b2e17b9d7a94dca9d80c8f7a0888f176b3044719f82d324c51124e812_s390x",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch-rhel8-operator@sha256:7b2af74b2e17b9d7a94dca9d80c8f7a0888f176b3044719f82d324c51124e812?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch-rhel8-operator\u0026tag=v5.2.10-5"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch-proxy-rhel8@sha256:b2d34adb0fa6923aaa9f27e293f1b99a201d45bcd0b75ef67fc66125f861eccb_s390x",
"product": {
"name": "openshift-logging/elasticsearch-proxy-rhel8@sha256:b2d34adb0fa6923aaa9f27e293f1b99a201d45bcd0b75ef67fc66125f861eccb_s390x",
"product_id": "openshift-logging/elasticsearch-proxy-rhel8@sha256:b2d34adb0fa6923aaa9f27e293f1b99a201d45bcd0b75ef67fc66125f861eccb_s390x",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch-proxy-rhel8@sha256:b2d34adb0fa6923aaa9f27e293f1b99a201d45bcd0b75ef67fc66125f861eccb?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel8\u0026tag=v1.0.0-168"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/log-file-metric-exporter-rhel8@sha256:4ba11d9e70d9f79220eb117675f8f86786f8e240c635f82e956396a6fd2dce33_s390x",
"product": {
"name": "openshift-logging/log-file-metric-exporter-rhel8@sha256:4ba11d9e70d9f79220eb117675f8f86786f8e240c635f82e956396a6fd2dce33_s390x",
"product_id": "openshift-logging/log-file-metric-exporter-rhel8@sha256:4ba11d9e70d9f79220eb117675f8f86786f8e240c635f82e956396a6fd2dce33_s390x",
"product_identification_helper": {
"purl": "pkg:oci/log-file-metric-exporter-rhel8@sha256:4ba11d9e70d9f79220eb117675f8f86786f8e240c635f82e956396a6fd2dce33?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel8\u0026tag=v1.0.0-124"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-curator5-rhel8@sha256:24b768c1d2fb38041cf14bfc4d7e95a98667b54cd06559eb17e56b38cdef5935_s390x",
"product": {
"name": "openshift-logging/logging-curator5-rhel8@sha256:24b768c1d2fb38041cf14bfc4d7e95a98667b54cd06559eb17e56b38cdef5935_s390x",
"product_id": "openshift-logging/logging-curator5-rhel8@sha256:24b768c1d2fb38041cf14bfc4d7e95a98667b54cd06559eb17e56b38cdef5935_s390x",
"product_identification_helper": {
"purl": "pkg:oci/logging-curator5-rhel8@sha256:24b768c1d2fb38041cf14bfc4d7e95a98667b54cd06559eb17e56b38cdef5935?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/logging-curator5-rhel8\u0026tag=v5.8.1-124"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch6-rhel8@sha256:a9d77def08bd0f8dd6efdf3b4f4043adc34ecdc8ad711c07d5e10ab9859c3bf4_s390x",
"product": {
"name": "openshift-logging/elasticsearch6-rhel8@sha256:a9d77def08bd0f8dd6efdf3b4f4043adc34ecdc8ad711c07d5e10ab9859c3bf4_s390x",
"product_id": "openshift-logging/elasticsearch6-rhel8@sha256:a9d77def08bd0f8dd6efdf3b4f4043adc34ecdc8ad711c07d5e10ab9859c3bf4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch6-rhel8@sha256:a9d77def08bd0f8dd6efdf3b4f4043adc34ecdc8ad711c07d5e10ab9859c3bf4?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch6-rhel8\u0026tag=v6.8.1-157"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/eventrouter-rhel8@sha256:817f5dc6aba5ab38267c519e3736125170e05c8f92a89ad49c59b85a17361924_s390x",
"product": {
"name": "openshift-logging/eventrouter-rhel8@sha256:817f5dc6aba5ab38267c519e3736125170e05c8f92a89ad49c59b85a17361924_s390x",
"product_id": "openshift-logging/eventrouter-rhel8@sha256:817f5dc6aba5ab38267c519e3736125170e05c8f92a89ad49c59b85a17361924_s390x",
"product_identification_helper": {
"purl": "pkg:oci/eventrouter-rhel8@sha256:817f5dc6aba5ab38267c519e3736125170e05c8f92a89ad49c59b85a17361924?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/eventrouter-rhel8\u0026tag=v0.3.0-161"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/fluentd-rhel8@sha256:0f0ecc6f72d023e6450d9039ec9854a1dd2e6a6b352fca447f3c41eedf51f632_s390x",
"product": {
"name": "openshift-logging/fluentd-rhel8@sha256:0f0ecc6f72d023e6450d9039ec9854a1dd2e6a6b352fca447f3c41eedf51f632_s390x",
"product_id": "openshift-logging/fluentd-rhel8@sha256:0f0ecc6f72d023e6450d9039ec9854a1dd2e6a6b352fca447f3c41eedf51f632_s390x",
"product_identification_helper": {
"purl": "pkg:oci/fluentd-rhel8@sha256:0f0ecc6f72d023e6450d9039ec9854a1dd2e6a6b352fca447f3c41eedf51f632?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/fluentd-rhel8\u0026tag=v1.7.4-176"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/kibana6-rhel8@sha256:b0d18b2097c25d8d790a327f383d402b38e52de16f66003a51a31a2d208229bf_s390x",
"product": {
"name": "openshift-logging/kibana6-rhel8@sha256:b0d18b2097c25d8d790a327f383d402b38e52de16f66003a51a31a2d208229bf_s390x",
"product_id": "openshift-logging/kibana6-rhel8@sha256:b0d18b2097c25d8d790a327f383d402b38e52de16f66003a51a31a2d208229bf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kibana6-rhel8@sha256:b0d18b2097c25d8d790a327f383d402b38e52de16f66003a51a31a2d208229bf?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/kibana6-rhel8\u0026tag=v6.8.1-188"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-logging/cluster-logging-rhel8-operator@sha256:9ce12df98f4d7025ebd57d3df5663a8b8f954850458553ba46e3632c2d541f5a_ppc64le",
"product": {
"name": "openshift-logging/cluster-logging-rhel8-operator@sha256:9ce12df98f4d7025ebd57d3df5663a8b8f954850458553ba46e3632c2d541f5a_ppc64le",
"product_id": "openshift-logging/cluster-logging-rhel8-operator@sha256:9ce12df98f4d7025ebd57d3df5663a8b8f954850458553ba46e3632c2d541f5a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-rhel8-operator@sha256:9ce12df98f4d7025ebd57d3df5663a8b8f954850458553ba46e3632c2d541f5a?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/cluster-logging-rhel8-operator\u0026tag=v5.2.10-5"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch-rhel8-operator@sha256:f6cf62bdf8f65b2c9e384d560a3e10faf1bf09ef7646316e600c03292bcc6e9c_ppc64le",
"product": {
"name": "openshift-logging/elasticsearch-rhel8-operator@sha256:f6cf62bdf8f65b2c9e384d560a3e10faf1bf09ef7646316e600c03292bcc6e9c_ppc64le",
"product_id": "openshift-logging/elasticsearch-rhel8-operator@sha256:f6cf62bdf8f65b2c9e384d560a3e10faf1bf09ef7646316e600c03292bcc6e9c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch-rhel8-operator@sha256:f6cf62bdf8f65b2c9e384d560a3e10faf1bf09ef7646316e600c03292bcc6e9c?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch-rhel8-operator\u0026tag=v5.2.10-5"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch-proxy-rhel8@sha256:9b03dd6f7c46aabcdf380d1f68369a3543857984f9cf396c9c69479d7360aebf_ppc64le",
"product": {
"name": "openshift-logging/elasticsearch-proxy-rhel8@sha256:9b03dd6f7c46aabcdf380d1f68369a3543857984f9cf396c9c69479d7360aebf_ppc64le",
"product_id": "openshift-logging/elasticsearch-proxy-rhel8@sha256:9b03dd6f7c46aabcdf380d1f68369a3543857984f9cf396c9c69479d7360aebf_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch-proxy-rhel8@sha256:9b03dd6f7c46aabcdf380d1f68369a3543857984f9cf396c9c69479d7360aebf?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel8\u0026tag=v1.0.0-168"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/log-file-metric-exporter-rhel8@sha256:c161485004aee7ff930d73712a710aa0be1e8f17379b1e1a6468b008382d0fcb_ppc64le",
"product": {
"name": "openshift-logging/log-file-metric-exporter-rhel8@sha256:c161485004aee7ff930d73712a710aa0be1e8f17379b1e1a6468b008382d0fcb_ppc64le",
"product_id": "openshift-logging/log-file-metric-exporter-rhel8@sha256:c161485004aee7ff930d73712a710aa0be1e8f17379b1e1a6468b008382d0fcb_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/log-file-metric-exporter-rhel8@sha256:c161485004aee7ff930d73712a710aa0be1e8f17379b1e1a6468b008382d0fcb?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel8\u0026tag=v1.0.0-124"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-curator5-rhel8@sha256:946862097347e7872b09a6b28e32c1faad3afaa721a2d11ff2efc1523513eb3d_ppc64le",
"product": {
"name": "openshift-logging/logging-curator5-rhel8@sha256:946862097347e7872b09a6b28e32c1faad3afaa721a2d11ff2efc1523513eb3d_ppc64le",
"product_id": "openshift-logging/logging-curator5-rhel8@sha256:946862097347e7872b09a6b28e32c1faad3afaa721a2d11ff2efc1523513eb3d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/logging-curator5-rhel8@sha256:946862097347e7872b09a6b28e32c1faad3afaa721a2d11ff2efc1523513eb3d?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/logging-curator5-rhel8\u0026tag=v5.8.1-124"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch6-rhel8@sha256:c6d38cf0a1cedd00eb56d0d34133224dbbf40cae1ac227a68666a8fc527d2c4f_ppc64le",
"product": {
"name": "openshift-logging/elasticsearch6-rhel8@sha256:c6d38cf0a1cedd00eb56d0d34133224dbbf40cae1ac227a68666a8fc527d2c4f_ppc64le",
"product_id": "openshift-logging/elasticsearch6-rhel8@sha256:c6d38cf0a1cedd00eb56d0d34133224dbbf40cae1ac227a68666a8fc527d2c4f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch6-rhel8@sha256:c6d38cf0a1cedd00eb56d0d34133224dbbf40cae1ac227a68666a8fc527d2c4f?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch6-rhel8\u0026tag=v6.8.1-157"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/eventrouter-rhel8@sha256:ed1814ad94f78aed0f675c94e2977caa37dd37dab2cc97cfca822cca8e8d308a_ppc64le",
"product": {
"name": "openshift-logging/eventrouter-rhel8@sha256:ed1814ad94f78aed0f675c94e2977caa37dd37dab2cc97cfca822cca8e8d308a_ppc64le",
"product_id": "openshift-logging/eventrouter-rhel8@sha256:ed1814ad94f78aed0f675c94e2977caa37dd37dab2cc97cfca822cca8e8d308a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/eventrouter-rhel8@sha256:ed1814ad94f78aed0f675c94e2977caa37dd37dab2cc97cfca822cca8e8d308a?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/eventrouter-rhel8\u0026tag=v0.3.0-161"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/fluentd-rhel8@sha256:550a893bd01fde28d01e719d6dab9e7d0bba3d258be6f4f3f1fd943cd64bac63_ppc64le",
"product": {
"name": "openshift-logging/fluentd-rhel8@sha256:550a893bd01fde28d01e719d6dab9e7d0bba3d258be6f4f3f1fd943cd64bac63_ppc64le",
"product_id": "openshift-logging/fluentd-rhel8@sha256:550a893bd01fde28d01e719d6dab9e7d0bba3d258be6f4f3f1fd943cd64bac63_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/fluentd-rhel8@sha256:550a893bd01fde28d01e719d6dab9e7d0bba3d258be6f4f3f1fd943cd64bac63?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/fluentd-rhel8\u0026tag=v1.7.4-176"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/kibana6-rhel8@sha256:8156bd1e3fcd549a0702410658bf523d7223e4ecee9da46b17d467badcb77950_ppc64le",
"product": {
"name": "openshift-logging/kibana6-rhel8@sha256:8156bd1e3fcd549a0702410658bf523d7223e4ecee9da46b17d467badcb77950_ppc64le",
"product_id": "openshift-logging/kibana6-rhel8@sha256:8156bd1e3fcd549a0702410658bf523d7223e4ecee9da46b17d467badcb77950_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kibana6-rhel8@sha256:8156bd1e3fcd549a0702410658bf523d7223e4ecee9da46b17d467badcb77950?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/kibana6-rhel8\u0026tag=v6.8.1-188"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/cluster-logging-operator-bundle@sha256:e4ffb0fd45e60c7bfb77ca368f41064fd73e442390a502f8f393ae81839c00a3_amd64 as a component of OpenShift Logging 5.2",
"product_id": "8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-operator-bundle@sha256:e4ffb0fd45e60c7bfb77ca368f41064fd73e442390a502f8f393ae81839c00a3_amd64"
},
"product_reference": "openshift-logging/cluster-logging-operator-bundle@sha256:e4ffb0fd45e60c7bfb77ca368f41064fd73e442390a502f8f393ae81839c00a3_amd64",
"relates_to_product_reference": "8Base-OSE-LOGGING-5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/cluster-logging-rhel8-operator@sha256:65f4692fd0c2ec0edb10078bcf0c1760ddc13820ab1ca5324fdf610fb5a8fefb_s390x as a component of OpenShift Logging 5.2",
"product_id": "8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:65f4692fd0c2ec0edb10078bcf0c1760ddc13820ab1ca5324fdf610fb5a8fefb_s390x"
},
"product_reference": "openshift-logging/cluster-logging-rhel8-operator@sha256:65f4692fd0c2ec0edb10078bcf0c1760ddc13820ab1ca5324fdf610fb5a8fefb_s390x",
"relates_to_product_reference": "8Base-OSE-LOGGING-5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/cluster-logging-rhel8-operator@sha256:789a92c72f43e7144f7a606ded1d46dd37905d455f742dc6432e1a6f7cd1166b_amd64 as a component of OpenShift Logging 5.2",
"product_id": "8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:789a92c72f43e7144f7a606ded1d46dd37905d455f742dc6432e1a6f7cd1166b_amd64"
},
"product_reference": "openshift-logging/cluster-logging-rhel8-operator@sha256:789a92c72f43e7144f7a606ded1d46dd37905d455f742dc6432e1a6f7cd1166b_amd64",
"relates_to_product_reference": "8Base-OSE-LOGGING-5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/cluster-logging-rhel8-operator@sha256:9ce12df98f4d7025ebd57d3df5663a8b8f954850458553ba46e3632c2d541f5a_ppc64le as a component of OpenShift Logging 5.2",
"product_id": "8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:9ce12df98f4d7025ebd57d3df5663a8b8f954850458553ba46e3632c2d541f5a_ppc64le"
},
"product_reference": "openshift-logging/cluster-logging-rhel8-operator@sha256:9ce12df98f4d7025ebd57d3df5663a8b8f954850458553ba46e3632c2d541f5a_ppc64le",
"relates_to_product_reference": "8Base-OSE-LOGGING-5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch-operator-bundle@sha256:9321f376ff20443db006135e17060f6d5e0e95643d16cb9b8a839b9f95746fe0_amd64 as a component of OpenShift Logging 5.2",
"product_id": "8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-operator-bundle@sha256:9321f376ff20443db006135e17060f6d5e0e95643d16cb9b8a839b9f95746fe0_amd64"
},
"product_reference": "openshift-logging/elasticsearch-operator-bundle@sha256:9321f376ff20443db006135e17060f6d5e0e95643d16cb9b8a839b9f95746fe0_amd64",
"relates_to_product_reference": "8Base-OSE-LOGGING-5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch-proxy-rhel8@sha256:8cba0a6f2a32e8d37abb7e00f461a8ed3415c53ab3aca350b138687f636acf5a_amd64 as a component of OpenShift Logging 5.2",
"product_id": "8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:8cba0a6f2a32e8d37abb7e00f461a8ed3415c53ab3aca350b138687f636acf5a_amd64"
},
"product_reference": "openshift-logging/elasticsearch-proxy-rhel8@sha256:8cba0a6f2a32e8d37abb7e00f461a8ed3415c53ab3aca350b138687f636acf5a_amd64",
"relates_to_product_reference": "8Base-OSE-LOGGING-5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch-proxy-rhel8@sha256:9b03dd6f7c46aabcdf380d1f68369a3543857984f9cf396c9c69479d7360aebf_ppc64le as a component of OpenShift Logging 5.2",
"product_id": "8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:9b03dd6f7c46aabcdf380d1f68369a3543857984f9cf396c9c69479d7360aebf_ppc64le"
},
"product_reference": "openshift-logging/elasticsearch-proxy-rhel8@sha256:9b03dd6f7c46aabcdf380d1f68369a3543857984f9cf396c9c69479d7360aebf_ppc64le",
"relates_to_product_reference": "8Base-OSE-LOGGING-5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch-proxy-rhel8@sha256:b2d34adb0fa6923aaa9f27e293f1b99a201d45bcd0b75ef67fc66125f861eccb_s390x as a component of OpenShift Logging 5.2",
"product_id": "8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:b2d34adb0fa6923aaa9f27e293f1b99a201d45bcd0b75ef67fc66125f861eccb_s390x"
},
"product_reference": "openshift-logging/elasticsearch-proxy-rhel8@sha256:b2d34adb0fa6923aaa9f27e293f1b99a201d45bcd0b75ef67fc66125f861eccb_s390x",
"relates_to_product_reference": "8Base-OSE-LOGGING-5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch-rhel8-operator@sha256:60ec64113b27eb5dfb0b8857174efc3a98da8892493a9fa2988dfc24d0539863_amd64 as a component of OpenShift Logging 5.2",
"product_id": "8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:60ec64113b27eb5dfb0b8857174efc3a98da8892493a9fa2988dfc24d0539863_amd64"
},
"product_reference": "openshift-logging/elasticsearch-rhel8-operator@sha256:60ec64113b27eb5dfb0b8857174efc3a98da8892493a9fa2988dfc24d0539863_amd64",
"relates_to_product_reference": "8Base-OSE-LOGGING-5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch-rhel8-operator@sha256:7b2af74b2e17b9d7a94dca9d80c8f7a0888f176b3044719f82d324c51124e812_s390x as a component of OpenShift Logging 5.2",
"product_id": "8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:7b2af74b2e17b9d7a94dca9d80c8f7a0888f176b3044719f82d324c51124e812_s390x"
},
"product_reference": "openshift-logging/elasticsearch-rhel8-operator@sha256:7b2af74b2e17b9d7a94dca9d80c8f7a0888f176b3044719f82d324c51124e812_s390x",
"relates_to_product_reference": "8Base-OSE-LOGGING-5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch-rhel8-operator@sha256:f6cf62bdf8f65b2c9e384d560a3e10faf1bf09ef7646316e600c03292bcc6e9c_ppc64le as a component of OpenShift Logging 5.2",
"product_id": "8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:f6cf62bdf8f65b2c9e384d560a3e10faf1bf09ef7646316e600c03292bcc6e9c_ppc64le"
},
"product_reference": "openshift-logging/elasticsearch-rhel8-operator@sha256:f6cf62bdf8f65b2c9e384d560a3e10faf1bf09ef7646316e600c03292bcc6e9c_ppc64le",
"relates_to_product_reference": "8Base-OSE-LOGGING-5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch6-rhel8@sha256:267643d1c7686a12e548846a2b15ed1dd9af67353fad47487390b67da61cb833_amd64 as a component of OpenShift Logging 5.2",
"product_id": "8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:267643d1c7686a12e548846a2b15ed1dd9af67353fad47487390b67da61cb833_amd64"
},
"product_reference": "openshift-logging/elasticsearch6-rhel8@sha256:267643d1c7686a12e548846a2b15ed1dd9af67353fad47487390b67da61cb833_amd64",
"relates_to_product_reference": "8Base-OSE-LOGGING-5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch6-rhel8@sha256:a9d77def08bd0f8dd6efdf3b4f4043adc34ecdc8ad711c07d5e10ab9859c3bf4_s390x as a component of OpenShift Logging 5.2",
"product_id": "8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:a9d77def08bd0f8dd6efdf3b4f4043adc34ecdc8ad711c07d5e10ab9859c3bf4_s390x"
},
"product_reference": "openshift-logging/elasticsearch6-rhel8@sha256:a9d77def08bd0f8dd6efdf3b4f4043adc34ecdc8ad711c07d5e10ab9859c3bf4_s390x",
"relates_to_product_reference": "8Base-OSE-LOGGING-5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch6-rhel8@sha256:c6d38cf0a1cedd00eb56d0d34133224dbbf40cae1ac227a68666a8fc527d2c4f_ppc64le as a component of OpenShift Logging 5.2",
"product_id": "8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:c6d38cf0a1cedd00eb56d0d34133224dbbf40cae1ac227a68666a8fc527d2c4f_ppc64le"
},
"product_reference": "openshift-logging/elasticsearch6-rhel8@sha256:c6d38cf0a1cedd00eb56d0d34133224dbbf40cae1ac227a68666a8fc527d2c4f_ppc64le",
"relates_to_product_reference": "8Base-OSE-LOGGING-5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/eventrouter-rhel8@sha256:817f5dc6aba5ab38267c519e3736125170e05c8f92a89ad49c59b85a17361924_s390x as a component of OpenShift Logging 5.2",
"product_id": "8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:817f5dc6aba5ab38267c519e3736125170e05c8f92a89ad49c59b85a17361924_s390x"
},
"product_reference": "openshift-logging/eventrouter-rhel8@sha256:817f5dc6aba5ab38267c519e3736125170e05c8f92a89ad49c59b85a17361924_s390x",
"relates_to_product_reference": "8Base-OSE-LOGGING-5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/eventrouter-rhel8@sha256:90c95cdb1833dc963c4f20ee1ef490eab39a194a5fd3388dd334627d0da35bb1_amd64 as a component of OpenShift Logging 5.2",
"product_id": "8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:90c95cdb1833dc963c4f20ee1ef490eab39a194a5fd3388dd334627d0da35bb1_amd64"
},
"product_reference": "openshift-logging/eventrouter-rhel8@sha256:90c95cdb1833dc963c4f20ee1ef490eab39a194a5fd3388dd334627d0da35bb1_amd64",
"relates_to_product_reference": "8Base-OSE-LOGGING-5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/eventrouter-rhel8@sha256:ed1814ad94f78aed0f675c94e2977caa37dd37dab2cc97cfca822cca8e8d308a_ppc64le as a component of OpenShift Logging 5.2",
"product_id": "8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:ed1814ad94f78aed0f675c94e2977caa37dd37dab2cc97cfca822cca8e8d308a_ppc64le"
},
"product_reference": "openshift-logging/eventrouter-rhel8@sha256:ed1814ad94f78aed0f675c94e2977caa37dd37dab2cc97cfca822cca8e8d308a_ppc64le",
"relates_to_product_reference": "8Base-OSE-LOGGING-5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/fluentd-rhel8@sha256:0f0ecc6f72d023e6450d9039ec9854a1dd2e6a6b352fca447f3c41eedf51f632_s390x as a component of OpenShift Logging 5.2",
"product_id": "8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:0f0ecc6f72d023e6450d9039ec9854a1dd2e6a6b352fca447f3c41eedf51f632_s390x"
},
"product_reference": "openshift-logging/fluentd-rhel8@sha256:0f0ecc6f72d023e6450d9039ec9854a1dd2e6a6b352fca447f3c41eedf51f632_s390x",
"relates_to_product_reference": "8Base-OSE-LOGGING-5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/fluentd-rhel8@sha256:550a893bd01fde28d01e719d6dab9e7d0bba3d258be6f4f3f1fd943cd64bac63_ppc64le as a component of OpenShift Logging 5.2",
"product_id": "8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:550a893bd01fde28d01e719d6dab9e7d0bba3d258be6f4f3f1fd943cd64bac63_ppc64le"
},
"product_reference": "openshift-logging/fluentd-rhel8@sha256:550a893bd01fde28d01e719d6dab9e7d0bba3d258be6f4f3f1fd943cd64bac63_ppc64le",
"relates_to_product_reference": "8Base-OSE-LOGGING-5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/fluentd-rhel8@sha256:5846c4532557edd75fb21e46a2e7df9ef2d49750fb3e6c207da8437214f84801_amd64 as a component of OpenShift Logging 5.2",
"product_id": "8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:5846c4532557edd75fb21e46a2e7df9ef2d49750fb3e6c207da8437214f84801_amd64"
},
"product_reference": "openshift-logging/fluentd-rhel8@sha256:5846c4532557edd75fb21e46a2e7df9ef2d49750fb3e6c207da8437214f84801_amd64",
"relates_to_product_reference": "8Base-OSE-LOGGING-5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/kibana6-rhel8@sha256:8156bd1e3fcd549a0702410658bf523d7223e4ecee9da46b17d467badcb77950_ppc64le as a component of OpenShift Logging 5.2",
"product_id": "8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:8156bd1e3fcd549a0702410658bf523d7223e4ecee9da46b17d467badcb77950_ppc64le"
},
"product_reference": "openshift-logging/kibana6-rhel8@sha256:8156bd1e3fcd549a0702410658bf523d7223e4ecee9da46b17d467badcb77950_ppc64le",
"relates_to_product_reference": "8Base-OSE-LOGGING-5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/kibana6-rhel8@sha256:b0d18b2097c25d8d790a327f383d402b38e52de16f66003a51a31a2d208229bf_s390x as a component of OpenShift Logging 5.2",
"product_id": "8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:b0d18b2097c25d8d790a327f383d402b38e52de16f66003a51a31a2d208229bf_s390x"
},
"product_reference": "openshift-logging/kibana6-rhel8@sha256:b0d18b2097c25d8d790a327f383d402b38e52de16f66003a51a31a2d208229bf_s390x",
"relates_to_product_reference": "8Base-OSE-LOGGING-5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/kibana6-rhel8@sha256:e712c9de32b6e58a7abd2baebac2cc4e6c6d448b87e5e4d6241410166c6b37fe_amd64 as a component of OpenShift Logging 5.2",
"product_id": "8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:e712c9de32b6e58a7abd2baebac2cc4e6c6d448b87e5e4d6241410166c6b37fe_amd64"
},
"product_reference": "openshift-logging/kibana6-rhel8@sha256:e712c9de32b6e58a7abd2baebac2cc4e6c6d448b87e5e4d6241410166c6b37fe_amd64",
"relates_to_product_reference": "8Base-OSE-LOGGING-5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/log-file-metric-exporter-rhel8@sha256:4ba11d9e70d9f79220eb117675f8f86786f8e240c635f82e956396a6fd2dce33_s390x as a component of OpenShift Logging 5.2",
"product_id": "8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:4ba11d9e70d9f79220eb117675f8f86786f8e240c635f82e956396a6fd2dce33_s390x"
},
"product_reference": "openshift-logging/log-file-metric-exporter-rhel8@sha256:4ba11d9e70d9f79220eb117675f8f86786f8e240c635f82e956396a6fd2dce33_s390x",
"relates_to_product_reference": "8Base-OSE-LOGGING-5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/log-file-metric-exporter-rhel8@sha256:93e626d851e4251ac8adf5c11328f9e774f36880e9f853a75d6eca43b5f09e76_amd64 as a component of OpenShift Logging 5.2",
"product_id": "8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:93e626d851e4251ac8adf5c11328f9e774f36880e9f853a75d6eca43b5f09e76_amd64"
},
"product_reference": "openshift-logging/log-file-metric-exporter-rhel8@sha256:93e626d851e4251ac8adf5c11328f9e774f36880e9f853a75d6eca43b5f09e76_amd64",
"relates_to_product_reference": "8Base-OSE-LOGGING-5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/log-file-metric-exporter-rhel8@sha256:c161485004aee7ff930d73712a710aa0be1e8f17379b1e1a6468b008382d0fcb_ppc64le as a component of OpenShift Logging 5.2",
"product_id": "8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:c161485004aee7ff930d73712a710aa0be1e8f17379b1e1a6468b008382d0fcb_ppc64le"
},
"product_reference": "openshift-logging/log-file-metric-exporter-rhel8@sha256:c161485004aee7ff930d73712a710aa0be1e8f17379b1e1a6468b008382d0fcb_ppc64le",
"relates_to_product_reference": "8Base-OSE-LOGGING-5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-curator5-rhel8@sha256:24b768c1d2fb38041cf14bfc4d7e95a98667b54cd06559eb17e56b38cdef5935_s390x as a component of OpenShift Logging 5.2",
"product_id": "8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:24b768c1d2fb38041cf14bfc4d7e95a98667b54cd06559eb17e56b38cdef5935_s390x"
},
"product_reference": "openshift-logging/logging-curator5-rhel8@sha256:24b768c1d2fb38041cf14bfc4d7e95a98667b54cd06559eb17e56b38cdef5935_s390x",
"relates_to_product_reference": "8Base-OSE-LOGGING-5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-curator5-rhel8@sha256:946862097347e7872b09a6b28e32c1faad3afaa721a2d11ff2efc1523513eb3d_ppc64le as a component of OpenShift Logging 5.2",
"product_id": "8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:946862097347e7872b09a6b28e32c1faad3afaa721a2d11ff2efc1523513eb3d_ppc64le"
},
"product_reference": "openshift-logging/logging-curator5-rhel8@sha256:946862097347e7872b09a6b28e32c1faad3afaa721a2d11ff2efc1523513eb3d_ppc64le",
"relates_to_product_reference": "8Base-OSE-LOGGING-5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-curator5-rhel8@sha256:d4f09349b8ad4c53463bab012ce783ab53111f4fc2bca790d61e7ded91e0e37e_amd64 as a component of OpenShift Logging 5.2",
"product_id": "8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:d4f09349b8ad4c53463bab012ce783ab53111f4fc2bca790d61e7ded91e0e37e_amd64"
},
"product_reference": "openshift-logging/logging-curator5-rhel8@sha256:d4f09349b8ad4c53463bab012ce783ab53111f4fc2bca790d61e7ded91e0e37e_amd64",
"relates_to_product_reference": "8Base-OSE-LOGGING-5.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-37136",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2021-09-14T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-operator-bundle@sha256:e4ffb0fd45e60c7bfb77ca368f41064fd73e442390a502f8f393ae81839c00a3_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:65f4692fd0c2ec0edb10078bcf0c1760ddc13820ab1ca5324fdf610fb5a8fefb_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:789a92c72f43e7144f7a606ded1d46dd37905d455f742dc6432e1a6f7cd1166b_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:9ce12df98f4d7025ebd57d3df5663a8b8f954850458553ba46e3632c2d541f5a_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-operator-bundle@sha256:9321f376ff20443db006135e17060f6d5e0e95643d16cb9b8a839b9f95746fe0_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:8cba0a6f2a32e8d37abb7e00f461a8ed3415c53ab3aca350b138687f636acf5a_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:9b03dd6f7c46aabcdf380d1f68369a3543857984f9cf396c9c69479d7360aebf_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:b2d34adb0fa6923aaa9f27e293f1b99a201d45bcd0b75ef67fc66125f861eccb_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:60ec64113b27eb5dfb0b8857174efc3a98da8892493a9fa2988dfc24d0539863_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:7b2af74b2e17b9d7a94dca9d80c8f7a0888f176b3044719f82d324c51124e812_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:f6cf62bdf8f65b2c9e384d560a3e10faf1bf09ef7646316e600c03292bcc6e9c_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:817f5dc6aba5ab38267c519e3736125170e05c8f92a89ad49c59b85a17361924_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:90c95cdb1833dc963c4f20ee1ef490eab39a194a5fd3388dd334627d0da35bb1_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:ed1814ad94f78aed0f675c94e2977caa37dd37dab2cc97cfca822cca8e8d308a_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:0f0ecc6f72d023e6450d9039ec9854a1dd2e6a6b352fca447f3c41eedf51f632_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:550a893bd01fde28d01e719d6dab9e7d0bba3d258be6f4f3f1fd943cd64bac63_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:5846c4532557edd75fb21e46a2e7df9ef2d49750fb3e6c207da8437214f84801_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:8156bd1e3fcd549a0702410658bf523d7223e4ecee9da46b17d467badcb77950_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:b0d18b2097c25d8d790a327f383d402b38e52de16f66003a51a31a2d208229bf_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:e712c9de32b6e58a7abd2baebac2cc4e6c6d448b87e5e4d6241410166c6b37fe_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:4ba11d9e70d9f79220eb117675f8f86786f8e240c635f82e956396a6fd2dce33_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:93e626d851e4251ac8adf5c11328f9e774f36880e9f853a75d6eca43b5f09e76_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:c161485004aee7ff930d73712a710aa0be1e8f17379b1e1a6468b008382d0fcb_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:24b768c1d2fb38041cf14bfc4d7e95a98667b54cd06559eb17e56b38cdef5935_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:946862097347e7872b09a6b28e32c1faad3afaa721a2d11ff2efc1523513eb3d_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:d4f09349b8ad4c53463bab012ce783ab53111f4fc2bca790d61e7ded91e0e37e_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2004133"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Netty\u0027s netty-codec due to size restrictions for decompressed data in the Bzip2Decoder. By sending a specially-crafted input, a remote attacker could cause a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "netty-codec: Bzip2Decoder doesn\u0027t allow setting size restrictions for decompressed data",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "In the OpenShift Container Platform (OCP), the Hive/Presto/Hadoop components that comprise the OCP Metering stack ship the vulnerable version of netty-codec package. Since the release of OCP 4.6, the Metering product has been deprecated [1], so the affected components are marked as wontfix. This may be fixed in the future.\n\nStarting in OCP 4.7, the elasticsearch component is shipping as a part of the OpenShift Logging product (openshift-logging/elasticsearch6-rhel8). The elasticsearch component delivered in OCP 4.6 is marked as `Out of support scope` because these versions are already under Maintenance Phase of the support.\n\n[1] https://docs.openshift.com/container-platform/4.6/release_notes/ocp-4-6-release-notes.html#ocp-4-6-metering-operator-deprecated",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:267643d1c7686a12e548846a2b15ed1dd9af67353fad47487390b67da61cb833_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:a9d77def08bd0f8dd6efdf3b4f4043adc34ecdc8ad711c07d5e10ab9859c3bf4_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:c6d38cf0a1cedd00eb56d0d34133224dbbf40cae1ac227a68666a8fc527d2c4f_ppc64le"
],
"known_not_affected": [
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-operator-bundle@sha256:e4ffb0fd45e60c7bfb77ca368f41064fd73e442390a502f8f393ae81839c00a3_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:65f4692fd0c2ec0edb10078bcf0c1760ddc13820ab1ca5324fdf610fb5a8fefb_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:789a92c72f43e7144f7a606ded1d46dd37905d455f742dc6432e1a6f7cd1166b_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:9ce12df98f4d7025ebd57d3df5663a8b8f954850458553ba46e3632c2d541f5a_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-operator-bundle@sha256:9321f376ff20443db006135e17060f6d5e0e95643d16cb9b8a839b9f95746fe0_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:8cba0a6f2a32e8d37abb7e00f461a8ed3415c53ab3aca350b138687f636acf5a_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:9b03dd6f7c46aabcdf380d1f68369a3543857984f9cf396c9c69479d7360aebf_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:b2d34adb0fa6923aaa9f27e293f1b99a201d45bcd0b75ef67fc66125f861eccb_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:60ec64113b27eb5dfb0b8857174efc3a98da8892493a9fa2988dfc24d0539863_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:7b2af74b2e17b9d7a94dca9d80c8f7a0888f176b3044719f82d324c51124e812_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:f6cf62bdf8f65b2c9e384d560a3e10faf1bf09ef7646316e600c03292bcc6e9c_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:817f5dc6aba5ab38267c519e3736125170e05c8f92a89ad49c59b85a17361924_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:90c95cdb1833dc963c4f20ee1ef490eab39a194a5fd3388dd334627d0da35bb1_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:ed1814ad94f78aed0f675c94e2977caa37dd37dab2cc97cfca822cca8e8d308a_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:0f0ecc6f72d023e6450d9039ec9854a1dd2e6a6b352fca447f3c41eedf51f632_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:550a893bd01fde28d01e719d6dab9e7d0bba3d258be6f4f3f1fd943cd64bac63_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:5846c4532557edd75fb21e46a2e7df9ef2d49750fb3e6c207da8437214f84801_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:8156bd1e3fcd549a0702410658bf523d7223e4ecee9da46b17d467badcb77950_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:b0d18b2097c25d8d790a327f383d402b38e52de16f66003a51a31a2d208229bf_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:e712c9de32b6e58a7abd2baebac2cc4e6c6d448b87e5e4d6241410166c6b37fe_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:4ba11d9e70d9f79220eb117675f8f86786f8e240c635f82e956396a6fd2dce33_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:93e626d851e4251ac8adf5c11328f9e774f36880e9f853a75d6eca43b5f09e76_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:c161485004aee7ff930d73712a710aa0be1e8f17379b1e1a6468b008382d0fcb_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:24b768c1d2fb38041cf14bfc4d7e95a98667b54cd06559eb17e56b38cdef5935_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:946862097347e7872b09a6b28e32c1faad3afaa721a2d11ff2efc1523513eb3d_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:d4f09349b8ad4c53463bab012ce783ab53111f4fc2bca790d61e7ded91e0e37e_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-37136"
},
{
"category": "external",
"summary": "RHBZ#2004133",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2004133"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-37136",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-37136"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-37136",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-37136"
},
{
"category": "external",
"summary": "https://github.com/netty/netty/security/advisories/GHSA-grg4-wf29-r9vv",
"url": "https://github.com/netty/netty/security/advisories/GHSA-grg4-wf29-r9vv"
}
],
"release_date": "2021-09-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-11T19:51:53+00:00",
"details": "For OpenShift Container Platform 4.8 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.openshift.com/container-platform/4.8/release_notes/ocp-4-8-release-notes.html\n\nFor Red Hat OpenShift Logging 5.2, see the following instructions to apply this update:\n\nhttps://docs.openshift.com/container-platform/4.7/logging/cluster-logging-upgrading.html",
"product_ids": [
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:267643d1c7686a12e548846a2b15ed1dd9af67353fad47487390b67da61cb833_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:a9d77def08bd0f8dd6efdf3b4f4043adc34ecdc8ad711c07d5e10ab9859c3bf4_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:c6d38cf0a1cedd00eb56d0d34133224dbbf40cae1ac227a68666a8fc527d2c4f_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:2218"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-operator-bundle@sha256:e4ffb0fd45e60c7bfb77ca368f41064fd73e442390a502f8f393ae81839c00a3_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:65f4692fd0c2ec0edb10078bcf0c1760ddc13820ab1ca5324fdf610fb5a8fefb_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:789a92c72f43e7144f7a606ded1d46dd37905d455f742dc6432e1a6f7cd1166b_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:9ce12df98f4d7025ebd57d3df5663a8b8f954850458553ba46e3632c2d541f5a_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-operator-bundle@sha256:9321f376ff20443db006135e17060f6d5e0e95643d16cb9b8a839b9f95746fe0_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:8cba0a6f2a32e8d37abb7e00f461a8ed3415c53ab3aca350b138687f636acf5a_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:9b03dd6f7c46aabcdf380d1f68369a3543857984f9cf396c9c69479d7360aebf_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:b2d34adb0fa6923aaa9f27e293f1b99a201d45bcd0b75ef67fc66125f861eccb_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:60ec64113b27eb5dfb0b8857174efc3a98da8892493a9fa2988dfc24d0539863_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:7b2af74b2e17b9d7a94dca9d80c8f7a0888f176b3044719f82d324c51124e812_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:f6cf62bdf8f65b2c9e384d560a3e10faf1bf09ef7646316e600c03292bcc6e9c_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:267643d1c7686a12e548846a2b15ed1dd9af67353fad47487390b67da61cb833_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:a9d77def08bd0f8dd6efdf3b4f4043adc34ecdc8ad711c07d5e10ab9859c3bf4_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:c6d38cf0a1cedd00eb56d0d34133224dbbf40cae1ac227a68666a8fc527d2c4f_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:817f5dc6aba5ab38267c519e3736125170e05c8f92a89ad49c59b85a17361924_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:90c95cdb1833dc963c4f20ee1ef490eab39a194a5fd3388dd334627d0da35bb1_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:ed1814ad94f78aed0f675c94e2977caa37dd37dab2cc97cfca822cca8e8d308a_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:0f0ecc6f72d023e6450d9039ec9854a1dd2e6a6b352fca447f3c41eedf51f632_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:550a893bd01fde28d01e719d6dab9e7d0bba3d258be6f4f3f1fd943cd64bac63_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:5846c4532557edd75fb21e46a2e7df9ef2d49750fb3e6c207da8437214f84801_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:8156bd1e3fcd549a0702410658bf523d7223e4ecee9da46b17d467badcb77950_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:b0d18b2097c25d8d790a327f383d402b38e52de16f66003a51a31a2d208229bf_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:e712c9de32b6e58a7abd2baebac2cc4e6c6d448b87e5e4d6241410166c6b37fe_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:4ba11d9e70d9f79220eb117675f8f86786f8e240c635f82e956396a6fd2dce33_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:93e626d851e4251ac8adf5c11328f9e774f36880e9f853a75d6eca43b5f09e76_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:c161485004aee7ff930d73712a710aa0be1e8f17379b1e1a6468b008382d0fcb_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:24b768c1d2fb38041cf14bfc4d7e95a98667b54cd06559eb17e56b38cdef5935_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:946862097347e7872b09a6b28e32c1faad3afaa721a2d11ff2efc1523513eb3d_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:d4f09349b8ad4c53463bab012ce783ab53111f4fc2bca790d61e7ded91e0e37e_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "netty-codec: Bzip2Decoder doesn\u0027t allow setting size restrictions for decompressed data"
},
{
"cve": "CVE-2021-37137",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2021-09-14T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-operator-bundle@sha256:e4ffb0fd45e60c7bfb77ca368f41064fd73e442390a502f8f393ae81839c00a3_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:65f4692fd0c2ec0edb10078bcf0c1760ddc13820ab1ca5324fdf610fb5a8fefb_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:789a92c72f43e7144f7a606ded1d46dd37905d455f742dc6432e1a6f7cd1166b_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:9ce12df98f4d7025ebd57d3df5663a8b8f954850458553ba46e3632c2d541f5a_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-operator-bundle@sha256:9321f376ff20443db006135e17060f6d5e0e95643d16cb9b8a839b9f95746fe0_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:8cba0a6f2a32e8d37abb7e00f461a8ed3415c53ab3aca350b138687f636acf5a_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:9b03dd6f7c46aabcdf380d1f68369a3543857984f9cf396c9c69479d7360aebf_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:b2d34adb0fa6923aaa9f27e293f1b99a201d45bcd0b75ef67fc66125f861eccb_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:60ec64113b27eb5dfb0b8857174efc3a98da8892493a9fa2988dfc24d0539863_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:7b2af74b2e17b9d7a94dca9d80c8f7a0888f176b3044719f82d324c51124e812_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:f6cf62bdf8f65b2c9e384d560a3e10faf1bf09ef7646316e600c03292bcc6e9c_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:817f5dc6aba5ab38267c519e3736125170e05c8f92a89ad49c59b85a17361924_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:90c95cdb1833dc963c4f20ee1ef490eab39a194a5fd3388dd334627d0da35bb1_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:ed1814ad94f78aed0f675c94e2977caa37dd37dab2cc97cfca822cca8e8d308a_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:0f0ecc6f72d023e6450d9039ec9854a1dd2e6a6b352fca447f3c41eedf51f632_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:550a893bd01fde28d01e719d6dab9e7d0bba3d258be6f4f3f1fd943cd64bac63_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:5846c4532557edd75fb21e46a2e7df9ef2d49750fb3e6c207da8437214f84801_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:8156bd1e3fcd549a0702410658bf523d7223e4ecee9da46b17d467badcb77950_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:b0d18b2097c25d8d790a327f383d402b38e52de16f66003a51a31a2d208229bf_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:e712c9de32b6e58a7abd2baebac2cc4e6c6d448b87e5e4d6241410166c6b37fe_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:4ba11d9e70d9f79220eb117675f8f86786f8e240c635f82e956396a6fd2dce33_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:93e626d851e4251ac8adf5c11328f9e774f36880e9f853a75d6eca43b5f09e76_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:c161485004aee7ff930d73712a710aa0be1e8f17379b1e1a6468b008382d0fcb_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:24b768c1d2fb38041cf14bfc4d7e95a98667b54cd06559eb17e56b38cdef5935_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:946862097347e7872b09a6b28e32c1faad3afaa721a2d11ff2efc1523513eb3d_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:d4f09349b8ad4c53463bab012ce783ab53111f4fc2bca790d61e7ded91e0e37e_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2004135"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Netty\u0027s netty-codec due to unrestricted chunk lengths in the SnappyFrameDecoder. By sending a specially-crafted input, a remote attacker could cause excessive memory usage resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "netty-codec: SnappyFrameDecoder doesn\u0027t restrict chunk length and may buffer skippable chunks in an unnecessary way",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "In OpenShift Container Platform (OCP), the Hive/Presto/Hadoop components that comprise the OCP Metering stack, ship the vulnerable version of netty-codec package.\nSince the release of OCP 4.6, the Metering product has been deprecated [1], hence the affected components are marked as wontfix.\nThis may be fixed in the future.\n\nStarting in OCP 4.7, the elasticsearch component is shipping as a part of the OpenShift Logging product (openshift-logging/elasticsearch6-rhel8). The elasticsearch component delivered in OCP 4.6 is marked as `Out of support scope` because these versions are already under Maintenance Phase of the support.\n\n[1] https://docs.openshift.com/container-platform/4.6/release_notes/ocp-4-6-release-notes.html#ocp-4-6-metering-operator-deprecated",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:267643d1c7686a12e548846a2b15ed1dd9af67353fad47487390b67da61cb833_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:a9d77def08bd0f8dd6efdf3b4f4043adc34ecdc8ad711c07d5e10ab9859c3bf4_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:c6d38cf0a1cedd00eb56d0d34133224dbbf40cae1ac227a68666a8fc527d2c4f_ppc64le"
],
"known_not_affected": [
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-operator-bundle@sha256:e4ffb0fd45e60c7bfb77ca368f41064fd73e442390a502f8f393ae81839c00a3_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:65f4692fd0c2ec0edb10078bcf0c1760ddc13820ab1ca5324fdf610fb5a8fefb_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:789a92c72f43e7144f7a606ded1d46dd37905d455f742dc6432e1a6f7cd1166b_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:9ce12df98f4d7025ebd57d3df5663a8b8f954850458553ba46e3632c2d541f5a_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-operator-bundle@sha256:9321f376ff20443db006135e17060f6d5e0e95643d16cb9b8a839b9f95746fe0_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:8cba0a6f2a32e8d37abb7e00f461a8ed3415c53ab3aca350b138687f636acf5a_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:9b03dd6f7c46aabcdf380d1f68369a3543857984f9cf396c9c69479d7360aebf_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:b2d34adb0fa6923aaa9f27e293f1b99a201d45bcd0b75ef67fc66125f861eccb_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:60ec64113b27eb5dfb0b8857174efc3a98da8892493a9fa2988dfc24d0539863_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:7b2af74b2e17b9d7a94dca9d80c8f7a0888f176b3044719f82d324c51124e812_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:f6cf62bdf8f65b2c9e384d560a3e10faf1bf09ef7646316e600c03292bcc6e9c_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:817f5dc6aba5ab38267c519e3736125170e05c8f92a89ad49c59b85a17361924_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:90c95cdb1833dc963c4f20ee1ef490eab39a194a5fd3388dd334627d0da35bb1_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:ed1814ad94f78aed0f675c94e2977caa37dd37dab2cc97cfca822cca8e8d308a_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:0f0ecc6f72d023e6450d9039ec9854a1dd2e6a6b352fca447f3c41eedf51f632_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:550a893bd01fde28d01e719d6dab9e7d0bba3d258be6f4f3f1fd943cd64bac63_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:5846c4532557edd75fb21e46a2e7df9ef2d49750fb3e6c207da8437214f84801_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:8156bd1e3fcd549a0702410658bf523d7223e4ecee9da46b17d467badcb77950_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:b0d18b2097c25d8d790a327f383d402b38e52de16f66003a51a31a2d208229bf_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:e712c9de32b6e58a7abd2baebac2cc4e6c6d448b87e5e4d6241410166c6b37fe_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:4ba11d9e70d9f79220eb117675f8f86786f8e240c635f82e956396a6fd2dce33_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:93e626d851e4251ac8adf5c11328f9e774f36880e9f853a75d6eca43b5f09e76_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:c161485004aee7ff930d73712a710aa0be1e8f17379b1e1a6468b008382d0fcb_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:24b768c1d2fb38041cf14bfc4d7e95a98667b54cd06559eb17e56b38cdef5935_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:946862097347e7872b09a6b28e32c1faad3afaa721a2d11ff2efc1523513eb3d_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:d4f09349b8ad4c53463bab012ce783ab53111f4fc2bca790d61e7ded91e0e37e_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-37137"
},
{
"category": "external",
"summary": "RHBZ#2004135",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2004135"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-37137",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-37137"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-37137",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-37137"
},
{
"category": "external",
"summary": "https://github.com/netty/netty/security/advisories/GHSA-grg4-wf29-r9vv",
"url": "https://github.com/netty/netty/security/advisories/GHSA-grg4-wf29-r9vv"
}
],
"release_date": "2021-09-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-11T19:51:53+00:00",
"details": "For OpenShift Container Platform 4.8 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.openshift.com/container-platform/4.8/release_notes/ocp-4-8-release-notes.html\n\nFor Red Hat OpenShift Logging 5.2, see the following instructions to apply this update:\n\nhttps://docs.openshift.com/container-platform/4.7/logging/cluster-logging-upgrading.html",
"product_ids": [
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:267643d1c7686a12e548846a2b15ed1dd9af67353fad47487390b67da61cb833_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:a9d77def08bd0f8dd6efdf3b4f4043adc34ecdc8ad711c07d5e10ab9859c3bf4_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:c6d38cf0a1cedd00eb56d0d34133224dbbf40cae1ac227a68666a8fc527d2c4f_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:2218"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-operator-bundle@sha256:e4ffb0fd45e60c7bfb77ca368f41064fd73e442390a502f8f393ae81839c00a3_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:65f4692fd0c2ec0edb10078bcf0c1760ddc13820ab1ca5324fdf610fb5a8fefb_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:789a92c72f43e7144f7a606ded1d46dd37905d455f742dc6432e1a6f7cd1166b_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:9ce12df98f4d7025ebd57d3df5663a8b8f954850458553ba46e3632c2d541f5a_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-operator-bundle@sha256:9321f376ff20443db006135e17060f6d5e0e95643d16cb9b8a839b9f95746fe0_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:8cba0a6f2a32e8d37abb7e00f461a8ed3415c53ab3aca350b138687f636acf5a_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:9b03dd6f7c46aabcdf380d1f68369a3543857984f9cf396c9c69479d7360aebf_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:b2d34adb0fa6923aaa9f27e293f1b99a201d45bcd0b75ef67fc66125f861eccb_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:60ec64113b27eb5dfb0b8857174efc3a98da8892493a9fa2988dfc24d0539863_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:7b2af74b2e17b9d7a94dca9d80c8f7a0888f176b3044719f82d324c51124e812_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:f6cf62bdf8f65b2c9e384d560a3e10faf1bf09ef7646316e600c03292bcc6e9c_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:267643d1c7686a12e548846a2b15ed1dd9af67353fad47487390b67da61cb833_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:a9d77def08bd0f8dd6efdf3b4f4043adc34ecdc8ad711c07d5e10ab9859c3bf4_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:c6d38cf0a1cedd00eb56d0d34133224dbbf40cae1ac227a68666a8fc527d2c4f_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:817f5dc6aba5ab38267c519e3736125170e05c8f92a89ad49c59b85a17361924_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:90c95cdb1833dc963c4f20ee1ef490eab39a194a5fd3388dd334627d0da35bb1_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:ed1814ad94f78aed0f675c94e2977caa37dd37dab2cc97cfca822cca8e8d308a_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:0f0ecc6f72d023e6450d9039ec9854a1dd2e6a6b352fca447f3c41eedf51f632_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:550a893bd01fde28d01e719d6dab9e7d0bba3d258be6f4f3f1fd943cd64bac63_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:5846c4532557edd75fb21e46a2e7df9ef2d49750fb3e6c207da8437214f84801_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:8156bd1e3fcd549a0702410658bf523d7223e4ecee9da46b17d467badcb77950_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:b0d18b2097c25d8d790a327f383d402b38e52de16f66003a51a31a2d208229bf_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:e712c9de32b6e58a7abd2baebac2cc4e6c6d448b87e5e4d6241410166c6b37fe_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:4ba11d9e70d9f79220eb117675f8f86786f8e240c635f82e956396a6fd2dce33_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:93e626d851e4251ac8adf5c11328f9e774f36880e9f853a75d6eca43b5f09e76_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:c161485004aee7ff930d73712a710aa0be1e8f17379b1e1a6468b008382d0fcb_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:24b768c1d2fb38041cf14bfc4d7e95a98667b54cd06559eb17e56b38cdef5935_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:946862097347e7872b09a6b28e32c1faad3afaa721a2d11ff2efc1523513eb3d_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:d4f09349b8ad4c53463bab012ce783ab53111f4fc2bca790d61e7ded91e0e37e_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "netty-codec: SnappyFrameDecoder doesn\u0027t restrict chunk length and may buffer skippable chunks in an unnecessary way"
},
{
"cve": "CVE-2021-43797",
"cwe": {
"id": "CWE-444",
"name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
},
"discovery_date": "2021-12-09T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-operator-bundle@sha256:e4ffb0fd45e60c7bfb77ca368f41064fd73e442390a502f8f393ae81839c00a3_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:65f4692fd0c2ec0edb10078bcf0c1760ddc13820ab1ca5324fdf610fb5a8fefb_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:789a92c72f43e7144f7a606ded1d46dd37905d455f742dc6432e1a6f7cd1166b_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:9ce12df98f4d7025ebd57d3df5663a8b8f954850458553ba46e3632c2d541f5a_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-operator-bundle@sha256:9321f376ff20443db006135e17060f6d5e0e95643d16cb9b8a839b9f95746fe0_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:8cba0a6f2a32e8d37abb7e00f461a8ed3415c53ab3aca350b138687f636acf5a_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:9b03dd6f7c46aabcdf380d1f68369a3543857984f9cf396c9c69479d7360aebf_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:b2d34adb0fa6923aaa9f27e293f1b99a201d45bcd0b75ef67fc66125f861eccb_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:60ec64113b27eb5dfb0b8857174efc3a98da8892493a9fa2988dfc24d0539863_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:7b2af74b2e17b9d7a94dca9d80c8f7a0888f176b3044719f82d324c51124e812_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:f6cf62bdf8f65b2c9e384d560a3e10faf1bf09ef7646316e600c03292bcc6e9c_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:817f5dc6aba5ab38267c519e3736125170e05c8f92a89ad49c59b85a17361924_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:90c95cdb1833dc963c4f20ee1ef490eab39a194a5fd3388dd334627d0da35bb1_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:ed1814ad94f78aed0f675c94e2977caa37dd37dab2cc97cfca822cca8e8d308a_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:0f0ecc6f72d023e6450d9039ec9854a1dd2e6a6b352fca447f3c41eedf51f632_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:550a893bd01fde28d01e719d6dab9e7d0bba3d258be6f4f3f1fd943cd64bac63_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:5846c4532557edd75fb21e46a2e7df9ef2d49750fb3e6c207da8437214f84801_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:8156bd1e3fcd549a0702410658bf523d7223e4ecee9da46b17d467badcb77950_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:b0d18b2097c25d8d790a327f383d402b38e52de16f66003a51a31a2d208229bf_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:e712c9de32b6e58a7abd2baebac2cc4e6c6d448b87e5e4d6241410166c6b37fe_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:4ba11d9e70d9f79220eb117675f8f86786f8e240c635f82e956396a6fd2dce33_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:93e626d851e4251ac8adf5c11328f9e774f36880e9f853a75d6eca43b5f09e76_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:c161485004aee7ff930d73712a710aa0be1e8f17379b1e1a6468b008382d0fcb_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:24b768c1d2fb38041cf14bfc4d7e95a98667b54cd06559eb17e56b38cdef5935_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:946862097347e7872b09a6b28e32c1faad3afaa721a2d11ff2efc1523513eb3d_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:d4f09349b8ad4c53463bab012ce783ab53111f4fc2bca790d61e7ded91e0e37e_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2031958"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Netty, specifically in the netty-codec-http package. This flaw allows unauthorized control characters at the beginning and end of a request, does not follow the specification, and can cause HTTP request smuggling.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "netty: control chars in header names may lead to HTTP request smuggling",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "In OpenShift Container Platform (OCP), the Hive/Presto/Hadoop components that comprise the OCP Metering stack, ship the vulnerable version of netty-codec-http package.\nSince the release of OCP 4.6, the Metering product has been deprecated, hence the affected components are marked as wontfix.\nThe openshift4/ose-logging-elasticsearch6 container is marked as Out of support scope because since the release of OCP 4.7 the logging functionality is delivered as an OpenShift Logging product and OCP 4.6 is already in the Maintenance Support phase.\nA fix was introduced in netty-codec-http version 4.1.72.Final.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:267643d1c7686a12e548846a2b15ed1dd9af67353fad47487390b67da61cb833_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:a9d77def08bd0f8dd6efdf3b4f4043adc34ecdc8ad711c07d5e10ab9859c3bf4_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:c6d38cf0a1cedd00eb56d0d34133224dbbf40cae1ac227a68666a8fc527d2c4f_ppc64le"
],
"known_not_affected": [
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-operator-bundle@sha256:e4ffb0fd45e60c7bfb77ca368f41064fd73e442390a502f8f393ae81839c00a3_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:65f4692fd0c2ec0edb10078bcf0c1760ddc13820ab1ca5324fdf610fb5a8fefb_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:789a92c72f43e7144f7a606ded1d46dd37905d455f742dc6432e1a6f7cd1166b_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:9ce12df98f4d7025ebd57d3df5663a8b8f954850458553ba46e3632c2d541f5a_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-operator-bundle@sha256:9321f376ff20443db006135e17060f6d5e0e95643d16cb9b8a839b9f95746fe0_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:8cba0a6f2a32e8d37abb7e00f461a8ed3415c53ab3aca350b138687f636acf5a_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:9b03dd6f7c46aabcdf380d1f68369a3543857984f9cf396c9c69479d7360aebf_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:b2d34adb0fa6923aaa9f27e293f1b99a201d45bcd0b75ef67fc66125f861eccb_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:60ec64113b27eb5dfb0b8857174efc3a98da8892493a9fa2988dfc24d0539863_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:7b2af74b2e17b9d7a94dca9d80c8f7a0888f176b3044719f82d324c51124e812_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:f6cf62bdf8f65b2c9e384d560a3e10faf1bf09ef7646316e600c03292bcc6e9c_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:817f5dc6aba5ab38267c519e3736125170e05c8f92a89ad49c59b85a17361924_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:90c95cdb1833dc963c4f20ee1ef490eab39a194a5fd3388dd334627d0da35bb1_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:ed1814ad94f78aed0f675c94e2977caa37dd37dab2cc97cfca822cca8e8d308a_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:0f0ecc6f72d023e6450d9039ec9854a1dd2e6a6b352fca447f3c41eedf51f632_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:550a893bd01fde28d01e719d6dab9e7d0bba3d258be6f4f3f1fd943cd64bac63_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:5846c4532557edd75fb21e46a2e7df9ef2d49750fb3e6c207da8437214f84801_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:8156bd1e3fcd549a0702410658bf523d7223e4ecee9da46b17d467badcb77950_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:b0d18b2097c25d8d790a327f383d402b38e52de16f66003a51a31a2d208229bf_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:e712c9de32b6e58a7abd2baebac2cc4e6c6d448b87e5e4d6241410166c6b37fe_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:4ba11d9e70d9f79220eb117675f8f86786f8e240c635f82e956396a6fd2dce33_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:93e626d851e4251ac8adf5c11328f9e774f36880e9f853a75d6eca43b5f09e76_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:c161485004aee7ff930d73712a710aa0be1e8f17379b1e1a6468b008382d0fcb_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:24b768c1d2fb38041cf14bfc4d7e95a98667b54cd06559eb17e56b38cdef5935_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:946862097347e7872b09a6b28e32c1faad3afaa721a2d11ff2efc1523513eb3d_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:d4f09349b8ad4c53463bab012ce783ab53111f4fc2bca790d61e7ded91e0e37e_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-43797"
},
{
"category": "external",
"summary": "RHBZ#2031958",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2031958"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-43797",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-43797"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-43797",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-43797"
},
{
"category": "external",
"summary": "https://github.com/netty/netty/security/advisories/GHSA-wx5j-54mm-rqqq",
"url": "https://github.com/netty/netty/security/advisories/GHSA-wx5j-54mm-rqqq"
}
],
"release_date": "2021-12-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-11T19:51:53+00:00",
"details": "For OpenShift Container Platform 4.8 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.openshift.com/container-platform/4.8/release_notes/ocp-4-8-release-notes.html\n\nFor Red Hat OpenShift Logging 5.2, see the following instructions to apply this update:\n\nhttps://docs.openshift.com/container-platform/4.7/logging/cluster-logging-upgrading.html",
"product_ids": [
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:267643d1c7686a12e548846a2b15ed1dd9af67353fad47487390b67da61cb833_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:a9d77def08bd0f8dd6efdf3b4f4043adc34ecdc8ad711c07d5e10ab9859c3bf4_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:c6d38cf0a1cedd00eb56d0d34133224dbbf40cae1ac227a68666a8fc527d2c4f_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:2218"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-operator-bundle@sha256:e4ffb0fd45e60c7bfb77ca368f41064fd73e442390a502f8f393ae81839c00a3_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:65f4692fd0c2ec0edb10078bcf0c1760ddc13820ab1ca5324fdf610fb5a8fefb_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:789a92c72f43e7144f7a606ded1d46dd37905d455f742dc6432e1a6f7cd1166b_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:9ce12df98f4d7025ebd57d3df5663a8b8f954850458553ba46e3632c2d541f5a_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-operator-bundle@sha256:9321f376ff20443db006135e17060f6d5e0e95643d16cb9b8a839b9f95746fe0_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:8cba0a6f2a32e8d37abb7e00f461a8ed3415c53ab3aca350b138687f636acf5a_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:9b03dd6f7c46aabcdf380d1f68369a3543857984f9cf396c9c69479d7360aebf_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:b2d34adb0fa6923aaa9f27e293f1b99a201d45bcd0b75ef67fc66125f861eccb_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:60ec64113b27eb5dfb0b8857174efc3a98da8892493a9fa2988dfc24d0539863_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:7b2af74b2e17b9d7a94dca9d80c8f7a0888f176b3044719f82d324c51124e812_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:f6cf62bdf8f65b2c9e384d560a3e10faf1bf09ef7646316e600c03292bcc6e9c_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:267643d1c7686a12e548846a2b15ed1dd9af67353fad47487390b67da61cb833_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:a9d77def08bd0f8dd6efdf3b4f4043adc34ecdc8ad711c07d5e10ab9859c3bf4_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:c6d38cf0a1cedd00eb56d0d34133224dbbf40cae1ac227a68666a8fc527d2c4f_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:817f5dc6aba5ab38267c519e3736125170e05c8f92a89ad49c59b85a17361924_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:90c95cdb1833dc963c4f20ee1ef490eab39a194a5fd3388dd334627d0da35bb1_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:ed1814ad94f78aed0f675c94e2977caa37dd37dab2cc97cfca822cca8e8d308a_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:0f0ecc6f72d023e6450d9039ec9854a1dd2e6a6b352fca447f3c41eedf51f632_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:550a893bd01fde28d01e719d6dab9e7d0bba3d258be6f4f3f1fd943cd64bac63_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:5846c4532557edd75fb21e46a2e7df9ef2d49750fb3e6c207da8437214f84801_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:8156bd1e3fcd549a0702410658bf523d7223e4ecee9da46b17d467badcb77950_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:b0d18b2097c25d8d790a327f383d402b38e52de16f66003a51a31a2d208229bf_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:e712c9de32b6e58a7abd2baebac2cc4e6c6d448b87e5e4d6241410166c6b37fe_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:4ba11d9e70d9f79220eb117675f8f86786f8e240c635f82e956396a6fd2dce33_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:93e626d851e4251ac8adf5c11328f9e774f36880e9f853a75d6eca43b5f09e76_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:c161485004aee7ff930d73712a710aa0be1e8f17379b1e1a6468b008382d0fcb_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:24b768c1d2fb38041cf14bfc4d7e95a98667b54cd06559eb17e56b38cdef5935_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:946862097347e7872b09a6b28e32c1faad3afaa721a2d11ff2efc1523513eb3d_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:d4f09349b8ad4c53463bab012ce783ab53111f4fc2bca790d61e7ded91e0e37e_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "netty: control chars in header names may lead to HTTP request smuggling"
},
{
"acknowledgments": [
{
"names": [
"Beni Paskin Cherniavsky"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2022-0759",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2022-02-15T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-operator-bundle@sha256:e4ffb0fd45e60c7bfb77ca368f41064fd73e442390a502f8f393ae81839c00a3_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:65f4692fd0c2ec0edb10078bcf0c1760ddc13820ab1ca5324fdf610fb5a8fefb_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:789a92c72f43e7144f7a606ded1d46dd37905d455f742dc6432e1a6f7cd1166b_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:9ce12df98f4d7025ebd57d3df5663a8b8f954850458553ba46e3632c2d541f5a_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-operator-bundle@sha256:9321f376ff20443db006135e17060f6d5e0e95643d16cb9b8a839b9f95746fe0_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:8cba0a6f2a32e8d37abb7e00f461a8ed3415c53ab3aca350b138687f636acf5a_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:9b03dd6f7c46aabcdf380d1f68369a3543857984f9cf396c9c69479d7360aebf_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:b2d34adb0fa6923aaa9f27e293f1b99a201d45bcd0b75ef67fc66125f861eccb_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:60ec64113b27eb5dfb0b8857174efc3a98da8892493a9fa2988dfc24d0539863_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:7b2af74b2e17b9d7a94dca9d80c8f7a0888f176b3044719f82d324c51124e812_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:f6cf62bdf8f65b2c9e384d560a3e10faf1bf09ef7646316e600c03292bcc6e9c_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:267643d1c7686a12e548846a2b15ed1dd9af67353fad47487390b67da61cb833_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:a9d77def08bd0f8dd6efdf3b4f4043adc34ecdc8ad711c07d5e10ab9859c3bf4_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:c6d38cf0a1cedd00eb56d0d34133224dbbf40cae1ac227a68666a8fc527d2c4f_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:817f5dc6aba5ab38267c519e3736125170e05c8f92a89ad49c59b85a17361924_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:90c95cdb1833dc963c4f20ee1ef490eab39a194a5fd3388dd334627d0da35bb1_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:ed1814ad94f78aed0f675c94e2977caa37dd37dab2cc97cfca822cca8e8d308a_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:8156bd1e3fcd549a0702410658bf523d7223e4ecee9da46b17d467badcb77950_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:b0d18b2097c25d8d790a327f383d402b38e52de16f66003a51a31a2d208229bf_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:e712c9de32b6e58a7abd2baebac2cc4e6c6d448b87e5e4d6241410166c6b37fe_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:4ba11d9e70d9f79220eb117675f8f86786f8e240c635f82e956396a6fd2dce33_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:93e626d851e4251ac8adf5c11328f9e774f36880e9f853a75d6eca43b5f09e76_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:c161485004aee7ff930d73712a710aa0be1e8f17379b1e1a6468b008382d0fcb_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:24b768c1d2fb38041cf14bfc4d7e95a98667b54cd06559eb17e56b38cdef5935_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:946862097347e7872b09a6b28e32c1faad3afaa721a2d11ff2efc1523513eb3d_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:d4f09349b8ad4c53463bab012ce783ab53111f4fc2bca790d61e7ded91e0e37e_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2058404"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in kubeclient, the Ruby client for Kubernetes REST API, in the way it parsed kubeconfig files. When the kubeconfig file does not configure custom CA to verify certs, kubeclient ends up accepting any certificate (it wrongly returns VERIFY_NONE). Ruby applications that leverage kubeclient to parse kubeconfig files are susceptible to Man-in-the-middle attacks (MITM).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kubeclient: kubeconfig parsing error can lead to MITM attacks",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:0f0ecc6f72d023e6450d9039ec9854a1dd2e6a6b352fca447f3c41eedf51f632_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:550a893bd01fde28d01e719d6dab9e7d0bba3d258be6f4f3f1fd943cd64bac63_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:5846c4532557edd75fb21e46a2e7df9ef2d49750fb3e6c207da8437214f84801_amd64"
],
"known_not_affected": [
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-operator-bundle@sha256:e4ffb0fd45e60c7bfb77ca368f41064fd73e442390a502f8f393ae81839c00a3_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:65f4692fd0c2ec0edb10078bcf0c1760ddc13820ab1ca5324fdf610fb5a8fefb_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:789a92c72f43e7144f7a606ded1d46dd37905d455f742dc6432e1a6f7cd1166b_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:9ce12df98f4d7025ebd57d3df5663a8b8f954850458553ba46e3632c2d541f5a_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-operator-bundle@sha256:9321f376ff20443db006135e17060f6d5e0e95643d16cb9b8a839b9f95746fe0_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:8cba0a6f2a32e8d37abb7e00f461a8ed3415c53ab3aca350b138687f636acf5a_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:9b03dd6f7c46aabcdf380d1f68369a3543857984f9cf396c9c69479d7360aebf_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:b2d34adb0fa6923aaa9f27e293f1b99a201d45bcd0b75ef67fc66125f861eccb_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:60ec64113b27eb5dfb0b8857174efc3a98da8892493a9fa2988dfc24d0539863_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:7b2af74b2e17b9d7a94dca9d80c8f7a0888f176b3044719f82d324c51124e812_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:f6cf62bdf8f65b2c9e384d560a3e10faf1bf09ef7646316e600c03292bcc6e9c_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:267643d1c7686a12e548846a2b15ed1dd9af67353fad47487390b67da61cb833_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:a9d77def08bd0f8dd6efdf3b4f4043adc34ecdc8ad711c07d5e10ab9859c3bf4_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:c6d38cf0a1cedd00eb56d0d34133224dbbf40cae1ac227a68666a8fc527d2c4f_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:817f5dc6aba5ab38267c519e3736125170e05c8f92a89ad49c59b85a17361924_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:90c95cdb1833dc963c4f20ee1ef490eab39a194a5fd3388dd334627d0da35bb1_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:ed1814ad94f78aed0f675c94e2977caa37dd37dab2cc97cfca822cca8e8d308a_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:8156bd1e3fcd549a0702410658bf523d7223e4ecee9da46b17d467badcb77950_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:b0d18b2097c25d8d790a327f383d402b38e52de16f66003a51a31a2d208229bf_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:e712c9de32b6e58a7abd2baebac2cc4e6c6d448b87e5e4d6241410166c6b37fe_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:4ba11d9e70d9f79220eb117675f8f86786f8e240c635f82e956396a6fd2dce33_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:93e626d851e4251ac8adf5c11328f9e774f36880e9f853a75d6eca43b5f09e76_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:c161485004aee7ff930d73712a710aa0be1e8f17379b1e1a6468b008382d0fcb_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:24b768c1d2fb38041cf14bfc4d7e95a98667b54cd06559eb17e56b38cdef5935_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:946862097347e7872b09a6b28e32c1faad3afaa721a2d11ff2efc1523513eb3d_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:d4f09349b8ad4c53463bab012ce783ab53111f4fc2bca790d61e7ded91e0e37e_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-0759"
},
{
"category": "external",
"summary": "RHBZ#2058404",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2058404"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-0759",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0759"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-0759",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0759"
}
],
"release_date": "2022-03-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-11T19:51:53+00:00",
"details": "For OpenShift Container Platform 4.8 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.openshift.com/container-platform/4.8/release_notes/ocp-4-8-release-notes.html\n\nFor Red Hat OpenShift Logging 5.2, see the following instructions to apply this update:\n\nhttps://docs.openshift.com/container-platform/4.7/logging/cluster-logging-upgrading.html",
"product_ids": [
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:0f0ecc6f72d023e6450d9039ec9854a1dd2e6a6b352fca447f3c41eedf51f632_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:550a893bd01fde28d01e719d6dab9e7d0bba3d258be6f4f3f1fd943cd64bac63_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:5846c4532557edd75fb21e46a2e7df9ef2d49750fb3e6c207da8437214f84801_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:2218"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-operator-bundle@sha256:e4ffb0fd45e60c7bfb77ca368f41064fd73e442390a502f8f393ae81839c00a3_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:65f4692fd0c2ec0edb10078bcf0c1760ddc13820ab1ca5324fdf610fb5a8fefb_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:789a92c72f43e7144f7a606ded1d46dd37905d455f742dc6432e1a6f7cd1166b_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:9ce12df98f4d7025ebd57d3df5663a8b8f954850458553ba46e3632c2d541f5a_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-operator-bundle@sha256:9321f376ff20443db006135e17060f6d5e0e95643d16cb9b8a839b9f95746fe0_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:8cba0a6f2a32e8d37abb7e00f461a8ed3415c53ab3aca350b138687f636acf5a_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:9b03dd6f7c46aabcdf380d1f68369a3543857984f9cf396c9c69479d7360aebf_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:b2d34adb0fa6923aaa9f27e293f1b99a201d45bcd0b75ef67fc66125f861eccb_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:60ec64113b27eb5dfb0b8857174efc3a98da8892493a9fa2988dfc24d0539863_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:7b2af74b2e17b9d7a94dca9d80c8f7a0888f176b3044719f82d324c51124e812_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:f6cf62bdf8f65b2c9e384d560a3e10faf1bf09ef7646316e600c03292bcc6e9c_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:267643d1c7686a12e548846a2b15ed1dd9af67353fad47487390b67da61cb833_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:a9d77def08bd0f8dd6efdf3b4f4043adc34ecdc8ad711c07d5e10ab9859c3bf4_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:c6d38cf0a1cedd00eb56d0d34133224dbbf40cae1ac227a68666a8fc527d2c4f_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:817f5dc6aba5ab38267c519e3736125170e05c8f92a89ad49c59b85a17361924_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:90c95cdb1833dc963c4f20ee1ef490eab39a194a5fd3388dd334627d0da35bb1_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:ed1814ad94f78aed0f675c94e2977caa37dd37dab2cc97cfca822cca8e8d308a_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:0f0ecc6f72d023e6450d9039ec9854a1dd2e6a6b352fca447f3c41eedf51f632_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:550a893bd01fde28d01e719d6dab9e7d0bba3d258be6f4f3f1fd943cd64bac63_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:5846c4532557edd75fb21e46a2e7df9ef2d49750fb3e6c207da8437214f84801_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:8156bd1e3fcd549a0702410658bf523d7223e4ecee9da46b17d467badcb77950_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:b0d18b2097c25d8d790a327f383d402b38e52de16f66003a51a31a2d208229bf_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:e712c9de32b6e58a7abd2baebac2cc4e6c6d448b87e5e4d6241410166c6b37fe_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:4ba11d9e70d9f79220eb117675f8f86786f8e240c635f82e956396a6fd2dce33_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:93e626d851e4251ac8adf5c11328f9e774f36880e9f853a75d6eca43b5f09e76_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:c161485004aee7ff930d73712a710aa0be1e8f17379b1e1a6468b008382d0fcb_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:24b768c1d2fb38041cf14bfc4d7e95a98667b54cd06559eb17e56b38cdef5935_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:946862097347e7872b09a6b28e32c1faad3afaa721a2d11ff2efc1523513eb3d_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:d4f09349b8ad4c53463bab012ce783ab53111f4fc2bca790d61e7ded91e0e37e_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kubeclient: kubeconfig parsing error can lead to MITM attacks"
},
{
"cve": "CVE-2022-21698",
"cwe": {
"id": "CWE-772",
"name": "Missing Release of Resource after Effective Lifetime"
},
"discovery_date": "2022-01-19T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-operator-bundle@sha256:e4ffb0fd45e60c7bfb77ca368f41064fd73e442390a502f8f393ae81839c00a3_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:65f4692fd0c2ec0edb10078bcf0c1760ddc13820ab1ca5324fdf610fb5a8fefb_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:789a92c72f43e7144f7a606ded1d46dd37905d455f742dc6432e1a6f7cd1166b_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:9ce12df98f4d7025ebd57d3df5663a8b8f954850458553ba46e3632c2d541f5a_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-operator-bundle@sha256:9321f376ff20443db006135e17060f6d5e0e95643d16cb9b8a839b9f95746fe0_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:267643d1c7686a12e548846a2b15ed1dd9af67353fad47487390b67da61cb833_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:a9d77def08bd0f8dd6efdf3b4f4043adc34ecdc8ad711c07d5e10ab9859c3bf4_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:c6d38cf0a1cedd00eb56d0d34133224dbbf40cae1ac227a68666a8fc527d2c4f_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:817f5dc6aba5ab38267c519e3736125170e05c8f92a89ad49c59b85a17361924_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:90c95cdb1833dc963c4f20ee1ef490eab39a194a5fd3388dd334627d0da35bb1_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:ed1814ad94f78aed0f675c94e2977caa37dd37dab2cc97cfca822cca8e8d308a_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:0f0ecc6f72d023e6450d9039ec9854a1dd2e6a6b352fca447f3c41eedf51f632_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:550a893bd01fde28d01e719d6dab9e7d0bba3d258be6f4f3f1fd943cd64bac63_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:5846c4532557edd75fb21e46a2e7df9ef2d49750fb3e6c207da8437214f84801_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:8156bd1e3fcd549a0702410658bf523d7223e4ecee9da46b17d467badcb77950_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:b0d18b2097c25d8d790a327f383d402b38e52de16f66003a51a31a2d208229bf_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:e712c9de32b6e58a7abd2baebac2cc4e6c6d448b87e5e4d6241410166c6b37fe_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:4ba11d9e70d9f79220eb117675f8f86786f8e240c635f82e956396a6fd2dce33_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:93e626d851e4251ac8adf5c11328f9e774f36880e9f853a75d6eca43b5f09e76_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:c161485004aee7ff930d73712a710aa0be1e8f17379b1e1a6468b008382d0fcb_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:24b768c1d2fb38041cf14bfc4d7e95a98667b54cd06559eb17e56b38cdef5935_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:946862097347e7872b09a6b28e32c1faad3afaa721a2d11ff2efc1523513eb3d_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:d4f09349b8ad4c53463bab012ce783ab53111f4fc2bca790d61e7ded91e0e37e_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2045880"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service attack was found in prometheus/client_golang. This flaw allows an attacker to produce a denial of service attack on an HTTP server by exploiting the InstrumentHandlerCounter function in the version below 1.11.1, resulting in a loss of availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "prometheus/client_golang: Denial of service using InstrumentHandlerCounter",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw has been rated as having a moderate impact for two main reasons. The opportunity for a Denial of Service is limited to the golang runtime. In the case of OpenShift Container Platform, this would be restricted within each individual container. Additionally, this is in alignment with upstream\u0027s (the Prometheus project) impact rating.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:8cba0a6f2a32e8d37abb7e00f461a8ed3415c53ab3aca350b138687f636acf5a_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:9b03dd6f7c46aabcdf380d1f68369a3543857984f9cf396c9c69479d7360aebf_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:b2d34adb0fa6923aaa9f27e293f1b99a201d45bcd0b75ef67fc66125f861eccb_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:60ec64113b27eb5dfb0b8857174efc3a98da8892493a9fa2988dfc24d0539863_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:7b2af74b2e17b9d7a94dca9d80c8f7a0888f176b3044719f82d324c51124e812_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:f6cf62bdf8f65b2c9e384d560a3e10faf1bf09ef7646316e600c03292bcc6e9c_ppc64le"
],
"known_not_affected": [
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-operator-bundle@sha256:e4ffb0fd45e60c7bfb77ca368f41064fd73e442390a502f8f393ae81839c00a3_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:65f4692fd0c2ec0edb10078bcf0c1760ddc13820ab1ca5324fdf610fb5a8fefb_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:789a92c72f43e7144f7a606ded1d46dd37905d455f742dc6432e1a6f7cd1166b_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:9ce12df98f4d7025ebd57d3df5663a8b8f954850458553ba46e3632c2d541f5a_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-operator-bundle@sha256:9321f376ff20443db006135e17060f6d5e0e95643d16cb9b8a839b9f95746fe0_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:267643d1c7686a12e548846a2b15ed1dd9af67353fad47487390b67da61cb833_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:a9d77def08bd0f8dd6efdf3b4f4043adc34ecdc8ad711c07d5e10ab9859c3bf4_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:c6d38cf0a1cedd00eb56d0d34133224dbbf40cae1ac227a68666a8fc527d2c4f_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:817f5dc6aba5ab38267c519e3736125170e05c8f92a89ad49c59b85a17361924_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:90c95cdb1833dc963c4f20ee1ef490eab39a194a5fd3388dd334627d0da35bb1_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:ed1814ad94f78aed0f675c94e2977caa37dd37dab2cc97cfca822cca8e8d308a_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:0f0ecc6f72d023e6450d9039ec9854a1dd2e6a6b352fca447f3c41eedf51f632_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:550a893bd01fde28d01e719d6dab9e7d0bba3d258be6f4f3f1fd943cd64bac63_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:5846c4532557edd75fb21e46a2e7df9ef2d49750fb3e6c207da8437214f84801_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:8156bd1e3fcd549a0702410658bf523d7223e4ecee9da46b17d467badcb77950_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:b0d18b2097c25d8d790a327f383d402b38e52de16f66003a51a31a2d208229bf_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:e712c9de32b6e58a7abd2baebac2cc4e6c6d448b87e5e4d6241410166c6b37fe_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:4ba11d9e70d9f79220eb117675f8f86786f8e240c635f82e956396a6fd2dce33_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:93e626d851e4251ac8adf5c11328f9e774f36880e9f853a75d6eca43b5f09e76_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:c161485004aee7ff930d73712a710aa0be1e8f17379b1e1a6468b008382d0fcb_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:24b768c1d2fb38041cf14bfc4d7e95a98667b54cd06559eb17e56b38cdef5935_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:946862097347e7872b09a6b28e32c1faad3afaa721a2d11ff2efc1523513eb3d_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:d4f09349b8ad4c53463bab012ce783ab53111f4fc2bca790d61e7ded91e0e37e_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-21698"
},
{
"category": "external",
"summary": "RHBZ#2045880",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2045880"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-21698",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21698"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-21698",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-21698"
},
{
"category": "external",
"summary": "https://github.com/prometheus/client_golang/security/advisories/GHSA-cg3q-j54f-5p7p",
"url": "https://github.com/prometheus/client_golang/security/advisories/GHSA-cg3q-j54f-5p7p"
}
],
"release_date": "2022-02-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-11T19:51:53+00:00",
"details": "For OpenShift Container Platform 4.8 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.openshift.com/container-platform/4.8/release_notes/ocp-4-8-release-notes.html\n\nFor Red Hat OpenShift Logging 5.2, see the following instructions to apply this update:\n\nhttps://docs.openshift.com/container-platform/4.7/logging/cluster-logging-upgrading.html",
"product_ids": [
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:8cba0a6f2a32e8d37abb7e00f461a8ed3415c53ab3aca350b138687f636acf5a_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:9b03dd6f7c46aabcdf380d1f68369a3543857984f9cf396c9c69479d7360aebf_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:b2d34adb0fa6923aaa9f27e293f1b99a201d45bcd0b75ef67fc66125f861eccb_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:60ec64113b27eb5dfb0b8857174efc3a98da8892493a9fa2988dfc24d0539863_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:7b2af74b2e17b9d7a94dca9d80c8f7a0888f176b3044719f82d324c51124e812_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:f6cf62bdf8f65b2c9e384d560a3e10faf1bf09ef7646316e600c03292bcc6e9c_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:2218"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-operator-bundle@sha256:e4ffb0fd45e60c7bfb77ca368f41064fd73e442390a502f8f393ae81839c00a3_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:65f4692fd0c2ec0edb10078bcf0c1760ddc13820ab1ca5324fdf610fb5a8fefb_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:789a92c72f43e7144f7a606ded1d46dd37905d455f742dc6432e1a6f7cd1166b_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/cluster-logging-rhel8-operator@sha256:9ce12df98f4d7025ebd57d3df5663a8b8f954850458553ba46e3632c2d541f5a_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-operator-bundle@sha256:9321f376ff20443db006135e17060f6d5e0e95643d16cb9b8a839b9f95746fe0_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:8cba0a6f2a32e8d37abb7e00f461a8ed3415c53ab3aca350b138687f636acf5a_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:9b03dd6f7c46aabcdf380d1f68369a3543857984f9cf396c9c69479d7360aebf_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-proxy-rhel8@sha256:b2d34adb0fa6923aaa9f27e293f1b99a201d45bcd0b75ef67fc66125f861eccb_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:60ec64113b27eb5dfb0b8857174efc3a98da8892493a9fa2988dfc24d0539863_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:7b2af74b2e17b9d7a94dca9d80c8f7a0888f176b3044719f82d324c51124e812_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch-rhel8-operator@sha256:f6cf62bdf8f65b2c9e384d560a3e10faf1bf09ef7646316e600c03292bcc6e9c_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:267643d1c7686a12e548846a2b15ed1dd9af67353fad47487390b67da61cb833_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:a9d77def08bd0f8dd6efdf3b4f4043adc34ecdc8ad711c07d5e10ab9859c3bf4_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/elasticsearch6-rhel8@sha256:c6d38cf0a1cedd00eb56d0d34133224dbbf40cae1ac227a68666a8fc527d2c4f_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:817f5dc6aba5ab38267c519e3736125170e05c8f92a89ad49c59b85a17361924_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:90c95cdb1833dc963c4f20ee1ef490eab39a194a5fd3388dd334627d0da35bb1_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/eventrouter-rhel8@sha256:ed1814ad94f78aed0f675c94e2977caa37dd37dab2cc97cfca822cca8e8d308a_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:0f0ecc6f72d023e6450d9039ec9854a1dd2e6a6b352fca447f3c41eedf51f632_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:550a893bd01fde28d01e719d6dab9e7d0bba3d258be6f4f3f1fd943cd64bac63_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/fluentd-rhel8@sha256:5846c4532557edd75fb21e46a2e7df9ef2d49750fb3e6c207da8437214f84801_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:8156bd1e3fcd549a0702410658bf523d7223e4ecee9da46b17d467badcb77950_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:b0d18b2097c25d8d790a327f383d402b38e52de16f66003a51a31a2d208229bf_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/kibana6-rhel8@sha256:e712c9de32b6e58a7abd2baebac2cc4e6c6d448b87e5e4d6241410166c6b37fe_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:4ba11d9e70d9f79220eb117675f8f86786f8e240c635f82e956396a6fd2dce33_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:93e626d851e4251ac8adf5c11328f9e774f36880e9f853a75d6eca43b5f09e76_amd64",
"8Base-OSE-LOGGING-5.2:openshift-logging/log-file-metric-exporter-rhel8@sha256:c161485004aee7ff930d73712a710aa0be1e8f17379b1e1a6468b008382d0fcb_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:24b768c1d2fb38041cf14bfc4d7e95a98667b54cd06559eb17e56b38cdef5935_s390x",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:946862097347e7872b09a6b28e32c1faad3afaa721a2d11ff2efc1523513eb3d_ppc64le",
"8Base-OSE-LOGGING-5.2:openshift-logging/logging-curator5-rhel8@sha256:d4f09349b8ad4c53463bab012ce783ab53111f4fc2bca790d61e7ded91e0e37e_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "prometheus/client_golang: Denial of service using InstrumentHandlerCounter"
}
]
}
rhsa-2023_6818
Vulnerability from csaf_redhat
Published
2023-11-08 14:26
Modified
2024-12-12 04:25
Summary
Red Hat Security Advisory: Satellite 6.14 security and bug fix update
Notes
Topic
An update is now available for Red Hat Satellite 6.14. The release contains a
new version of Satellite and important security fixes for various components.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat Satellite is a systems management tool for Linux-based
infrastructure. It allows for provisioning, remote management, and
monitoring of multiple Linux deployments with a single centralized tool.
Security Fix(es):
* golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) (CVE-2023-39325)
* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)
* GitPython: Insecure non-multi options in clone and clone_from is not blocked (CVE-2023-40267)
* kubeclient: kubeconfig parsing error can lead to MITM attacks (CVE-2022-0759)
* foreman: OS command injection via ct_command and fcct_command (CVE-2022-3874)
* ruby-git: code injection vulnerability (CVE-2022-46648)
* ruby-git: code injection vulnerability (CVE-2022-47318)
* Foreman: Arbitrary code execution through templates (CVE-2023-0118)
* rubygem-activerecord: SQL Injection (CVE-2023-22794)
* openssl: c_rehash script allows command injection (CVE-2022-1292)
* openssl: the c_rehash script allows command injection (CVE-2022-2068)
* Pulp:Tokens stored in plaintext (CVE-2022-3644)
* satellite: Blind SSRF via Referer header (CVE-2022-4130)
* python-future: remote attackers can cause denial of service via crafted Set-Cookie header from malicious web server (CVE-2022-40899)
* golang: net/http: excessive memory growth in a Go server accepting HTTP/2 requests (CVE-2022-41717)
* rubygem-activerecord: Denial of Service (CVE-2022-44566)
* rubygem-rack: denial of service in Content-Disposition parsing (CVE-2022-44570)
* rubygem-rack: denial of service in Content-Disposition parsing (CVE-2022-44571)
* rubygem-rack: denial of service in Content-Disposition parsing (CVE-2022-44572)
* Foreman: Stored cross-site scripting in host tab (CVE-2023-0119)
* puppet: Puppet Server ReDoS (CVE-2023-1894)
* rubygem-actionpack: Denial of Service in Action Dispatch (CVE-2023-22792)
* rubygem-actionpack: Denial of Service in Action Dispatch (CVE-2023-22795)
* rubygem-activesupport: Regular Expression Denial of Service (CVE-2023-22796)
* rubygem-globalid: ReDoS vulnerability (CVE-2023-22799)
* rubygem-rack: Denial of service in Multipart MIME parsing (CVE-2023-27530)
* rubygem-rack: denial of service in header parsing (CVE-2023-27539)
* golang: net/http: insufficient sanitization of Host header (CVE-2023-29406)
* sqlparse: Parser contains a regular expression that is vulnerable to ReDOS (Regular Expression Denial of Service) (CVE-2023-30608)
* python-django: Potential bypass of validation when uploading multiple files using one form field (CVE-2023-31047)
* python-requests: Unintended leak of Proxy-Authorization header (CVE-2023-32681)
* python-django: Potential regular expression denial of service vulnerability in EmailValidator/URLValidator (CVE-2023-36053)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
This update also fixes several bugs and adds various enhancements. Documentation for these changes is available from the Release Notes document linked to in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.